CVE-2014-1420

Published: Sep 11, 2020Modified: Nov 21, 2024

3.3

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Exploitability: 1.8 / Impact: 1.4

Source: NVD

Description

On desktop, Ubuntu UI Toolkit's StateSaver would serialise data on tmp/ files which an attacker could use to expose potentially sensitive data. StateSaver would also open files without the O_EXCL flag. An attacker could exploit this to launch a symlink attack, though this is partially mitigated by symlink and hardlink restrictions in Ubuntu. Fixed in 1.1.1188+14.10.20140813.4-0ubuntu1.

Affected (1)

Products: Canonical: Ubuntu Ui Toolkit

1 product

Ubuntu Ui Toolkit

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Canonical Ubuntu Ui Toolkit	Before 1.1.1188\+14.10.20140813.4-0ubuntu1

Related CWEs

Deserialization of Untrusted Data

The product deserializes untrusted data without sufficiently verifying that the resulting data will be valid.

Improper Link Resolution Before File Access ('Link Following')

The product attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource.

References (4)

http://bazaar.launchpad.net/~ubuntu-sdk-team/ubuntu-ui-toolkit/staging/revision/1182

Source: security@ubuntu.com

PatchThird Party Advisory

https://launchpad.net/bugs/1348241

Source: security@ubuntu.com

Issue TrackingThird Party Advisory

http://bazaar.launchpad.net/~ubuntu-sdk-team/ubuntu-ui-toolkit/staging/revision/1182

Source: af854a3a-2127-422b-91ae-364da2661108

PatchThird Party Advisory

https://launchpad.net/bugs/1348241

Source: af854a3a-2127-422b-91ae-364da2661108

Issue TrackingThird Party Advisory

Timeline

No history available yet.