CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
Confidence
Low
EPSS
Percentile
86.0%
Hiroshi Oota discovered that Emacs incorrectly handled search paths. If a
user were tricked into opening a file with Emacs, a local attacker could
execute arbitrary Lisp code with the privileges of the user invoking the
program. (CVE-2012-0035)
Paul Ling discovered that Emacs incorrectly handled certain eval forms in
local-variable sections. If a user were tricked into opening a specially
crafted file with Emacs, a remote attacker could execute arbitrary Lisp
code with the privileges of the user invoking the program. (CVE-2012-3479)
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 12.04 | noarch | emacs23-common | < 23.3+1-1ubuntu9.1 | UNKNOWN |
Ubuntu | 12.04 | noarch | emacs23 | < 23.3+1-1ubuntu9.1 | UNKNOWN |
Ubuntu | 12.04 | noarch | emacs23-bin-common | < 23.3+1-1ubuntu9.1 | UNKNOWN |
Ubuntu | 12.04 | noarch | emacs23-lucid | < 23.3+1-1ubuntu9.1 | UNKNOWN |
Ubuntu | 12.04 | noarch | emacs23-nox | < 23.3+1-1ubuntu9.1 | UNKNOWN |
Ubuntu | 11.10 | noarch | emacs23-common | < 23.3+1-1ubuntu4.1 | UNKNOWN |
Ubuntu | 11.10 | noarch | emacs23 | < 23.3+1-1ubuntu4.1 | UNKNOWN |
Ubuntu | 11.10 | noarch | emacs23-bin-common | < 23.3+1-1ubuntu4.1 | UNKNOWN |
Ubuntu | 11.10 | noarch | emacs23-lucid | < 23.3+1-1ubuntu4.1 | UNKNOWN |
Ubuntu | 11.10 | noarch | emacs23-nox | < 23.3+1-1ubuntu4.1 | UNKNOWN |