CVE-2007-5795

Published: Nov 2, 2007
Updated: Apr 13, 2023
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2007-5795" target="_blank" rel="noopener"> CVE-2007-5795
Severity: Medium
Exploit:

The hack-local-variables function in Emacs before 22.2, when enable-local-variables is set to :safe, does not properly search lists of unsafe or risky variables, which might allow user-assisted attackers to bypass intended restrictions and modify critical program variables via a file containing a Local variables declaration.