CVE-2013-1874

Published: Sep 29, 2014Modified: May 6, 2026

4.4

Vector

AV:L/AC:M/Au:N/C:P/I:P/A:P

Exploitability: 3.4 / Impact: 6.4

Source: NVD

Description

Untrusted search path vulnerability in csi in Chicken before 4.8.2 allows local users to execute arbitrary code via a Trojan horse .csirc in the current working directory.

Affected (13)

Products: Call Cc: Chicken

1 product

Configuration A

13 vulnerable

Vulnerable Software	Affected Versions
Call Cc Chicken	Up to 4.8.1
Call Cc Chicken	Version 4.8.0.1
Call Cc Chicken	Version 4.8.0.2
Call Cc Chicken	Version 4.8.0.3
Call Cc Chicken	Version 4.8.0.4
Call Cc Chicken	Version 4.8.0.5
Call Cc Chicken	Version 4.8.0.6
Call Cc Chicken	Version 4.8.0.7
Call Cc Chicken	Version 4.8.0
Call Cc Chicken	Version 4.8.0 rc1
Call Cc Chicken	Version 4.8.0 rc2
Call Cc Chicken	Version 4.8.0 rc3
Call Cc Chicken	Version 4.8.0 rc4

References (10)

http://code.call-cc.org/cgi-bin/gitweb.cgi?p=chicken-core.git%3Ba=blob%3Bf=NEWS%3Bh=c21c7cf9d1faf4f78736890ac7ca1d4b82d72ddd%3Bhb=c6750af99ada7fa4815ee834e4e705bcfac9c137

Source: secalert@redhat.com

http://seclists.org/oss-sec/2013/q1/692

Source: secalert@redhat.com

http://www.osvdb.org/91520

Source: secalert@redhat.com

http://www.securityfocus.com/bid/58583

Source: secalert@redhat.com

https://exchange.xforce.ibmcloud.com/vulnerabilities/85065

Source: secalert@redhat.com

http://code.call-cc.org/cgi-bin/gitweb.cgi?p=chicken-core.git%3Ba=blob%3Bf=NEWS%3Bh=c21c7cf9d1faf4f78736890ac7ca1d4b82d72ddd%3Bhb=c6750af99ada7fa4815ee834e4e705bcfac9c137

Source: af854a3a-2127-422b-91ae-364da2661108

http://seclists.org/oss-sec/2013/q1/692

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.osvdb.org/91520

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/58583

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/85065

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.