Is this a security risk with Python too?

Roman Suzi rnd at
Fri Aug 16 09:46:18 EDT 2002

Among numerous security alerts, I saw the following:

Package: tcl/tk                
Date: 08-10-2002

The tcl/tk package searched for its libraries in the current working
directory before other directories, which could allow local users to
execute arbitrary code by writing Trojan horse library that is under
a user-controlled directory.

Is this true for Python too (in some cases)?

Sincerely yours, Roman Suzi
rnd at =\= My AI powered by Linux RedHat 7.2
aaro at <- not to be mailed to

More information about the Python-list mailing list