CVE-2008-5986

Name of the Vulnerable Software and Affected Versions Csound versions 5.08.2 and possibly other versions

Description The issue allows local users to execute arbitrary code via a Trojan horse Python file in the current working directory. This is related to a vulnerability in the PySys SetArgv function.

Recommendations For version 5.08.2, consider restricting the execution of Python files from untrusted sources until a fix is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.