← Back

CVE-2014-0039

nvd nist
Published: Feb 8, 2014Modified: Apr 29, 2026

JSON object

Loading...
4.4
Vector
AV:L/AC:M/Au:N/C:P/I:P/A:P
Exploitability: 3.4 / Impact: 6.4
Source: NVD

Description

Untrusted search path vulnerability in fwsnort before 1.6.4, when not running as root, allows local users to execute arbitrary code via a Trojan horse fwsnort.conf in the current working directory.

Affected (25)

Products: Cipherdyne: Fwsnort
Cipherdyne
1 product
Fwsnort
Configuration A
25 vulnerable
Vulnerable SoftwareAffected Versions
Cipherdyne
Fwsnort
Up to 1.6.4
Fwsnort
Version 0.5
Fwsnort
Version 0.6.1
Fwsnort
Version 0.6.2
Fwsnort
Version 0.6.3
Fwsnort
Version 0.6.4
Fwsnort
Version 0.6.5
Fwsnort
Version 0.6
Fwsnort
Version 0.7.0
Fwsnort
Version 0.8.0
Fwsnort
Version 0.8.1
Fwsnort
Version 0.8.2
Fwsnort
Version 0.9.0
Fwsnort
Version 1.0.1
Fwsnort
Version 1.0.2
Fwsnort
Version 1.0.3
Fwsnort
Version 1.0.4
Fwsnort
Version 1.0.5
Fwsnort
Version 1.0.6
Fwsnort
Version 1.0
Fwsnort
Version 1.5
Fwsnort
Version 1.6.1
Fwsnort
Version 1.6.2
Fwsnort
Version 1.6.3
Fwsnort
Version 1.6

References (14)

Source: secalert@redhat.com
Source: secalert@redhat.com
Source: secalert@redhat.com
Source: secalert@redhat.com
Source: secalert@redhat.com
Source: secalert@redhat.com
Source: secalert@redhat.com
ExploitPatch
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
ExploitPatch

Timeline

No history available yet.