CVE-2008-5985
EPSS 0.07%
Description
Untrusted search path vulnerability in the Python interface in Epiphany 2.22.3, and possibly other versions, allows local users to execute arbitrary code via a Trojan horse Python file in the current working directory, related to a vulnerability in the PySys_SetArgv function (CVE-2008-5983).
How to fix CVE-2008-5985
To remediate CVE-2008-5985, upgrade the affected package to a fixed version below.
- Debian/epiphany-browser—upgrade to 2.22.3-7 or later
Is CVE-2008-5985 being exploited?
Low — EPSS is 0.1%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 2.22.3-7