CVE-2003-1232

Name of the Vulnerable Software and Affected Versions Emacs version 21.2.1

Description The issue allows user-assisted attackers to execute arbitrary commands because it does not prompt or warn the user before executing Lisp code in the local variables section of a text file. This can be demonstrated using the mode-name variable.

Recommendations For Emacs version 21.2.1, consider disabling the execution of Lisp code in the local variables section of text files until a patch is available. Restrict access to sensitive features that may be exploited through this issue to minimize the risk of arbitrary command execution.