RSS   Vulnerabilities for 'Comix'   RSS

2008-04-15
 
CVE-2008-1796

CWE-DesignError
 

 
Comix 3.6.4 creates temporary directories with predictable names, which allows local users to cause an unspecified denial of service.

 
2008-03-31
 
CVE-2008-1568

CWE-20
 

 
comix 3.6.4 allows attackers to execute arbitrary commands via a filename containing shell metacharacters that are not properly sanitized when executing the rar, unrar, or jpegtran programs.

 


Copyright 2024, cxsecurity.com

 

Back to Top