CVE-2009-0848 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2009-0848 Interim 1 5 2025-03-28T00:56:48Z current 2021-05-30T12:46:15Z 2025-03-28T00:56:48Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2009-0848 Untrusted search path vulnerability in GTK2 in OpenSUSE 11.0 and 11.1 allows local users to execute arbitrary code via a Trojan horse GTK module in an unspecified "relative search path." The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/7KJCZETGJ3YVUIQOCCWQ4C2N4IQ23R2C/#7KJCZETGJ3YVUIQOCCWQ4C2N4IQ23R2C E-Mail link for SUSE-SR:2009:006 https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Linux Enterprise Desktop 11 SUSE Linux Enterprise Software Development Kit 11 SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Software Development Kit 11 SUSE Linux Enterprise Software Development Kit 11 gtk2 gtk2-doc gtk2-lang gtk2 as a component of SUSE Linux Enterprise Desktop 11 gtk2 as a component of SUSE Linux Enterprise Server 11 gtk2-doc as a component of SUSE Linux Enterprise Server 11 gtk2-lang as a component of SUSE Linux Enterprise Server 11 gtk2 as a component of SUSE Linux Enterprise Software Development Kit 11 Untrusted search path vulnerability in GTK2 in OpenSUSE 11.0 and 11.1 allows local users to execute arbitrary code via a Trojan horse GTK module in an unspecified "relative search path." CVE-2009-0848 moderate 4.4 AV:L/AC:M/Au:N/C:P/I:P/A:P