{"id":"CVE-2010-2945","details":"The default configuration of SLiM before 1.3.2 places ./ (dot slash) at the beginning of the default_path option, which might allow local users to gain privileges via a Trojan horse program in the current working directory, related to slim.conf and cfg.cpp.","modified":"2026-04-10T03:41:22.443749Z","published":"2010-08-30T20:00:02Z","references":[{"type":"ADVISORY","url":"http://secunia.com/advisories/41005"},{"type":"WEB","url":"http://svn.berlios.de/viewvc/slim?view=revision&revision=171"},{"type":"WEB","url":"http://www.openwall.com/lists/oss-security/2010/08/19/8"},{"type":"WEB","url":"http://www.openwall.com/lists/oss-security/2010/08/20/10"}],"schema_version":"1.7.5"}