Comment 5 for bug 22882

Debian Bug Importer (debzilla) wrote :

Message-Id: <email address hidden>
Date: Fri, 30 Sep 2005 20:30:20 +0200
From: Joxean Koret <email address hidden>
To: Wolfram Quester <email address hidden>
Cc: <email address hidden>, <email address hidden>
Subject: Re: Bug#330894: inkscape: Arbitrary code execution when opening a
 malicious file

Content-Type: text/plain
Content-Transfer-Encoding: quoted-printable

> Hi Joxean!
> [...snip...]
> Thanks for your report. I forwarded it to the developer's mailing list.
> On my PowerBook inkscape simply crashed when opening your file, I don't
> know what it should do on a i386 box. I tried to open it in vim, but
> there it causes troubles too, at least for the syntax highlighter.=20

This is only a P.O.C. I have no working exploit at the moment for the

> I also tried it with sodipodi, but could not see an effect. It seems to
> open cleanly.
> With best wishes,
> Wolfi

Joxean Koret

Content-Type: application/pgp-signature; name=signature.asc
Content-Description: Esta parte del mensaje =?ISO-8859-1?Q?est=E1?= firmada

Version: GnuPG v1.4.1 (GNU/Linux)