CVE-2008-5984

Name of the Vulnerable Software and Affected Versions Dia version 0.96.1

Description The issue allows local users to execute arbitrary code via a Trojan horse Python file in the current working directory. This is related to a vulnerability in the PySys SetArgv function.

Recommendations For version 0.96.1, consider restricting access to the Python plugin until a patch is available. As a temporary workaround, avoid using the Python plugin in untrusted environments to minimize the risk of exploitation.