Published: 08/05/2014 Updated: 30/06/2016

CVSS v2 Base Score: 3.3 | Impact Score: 4.9 | Exploitability Score: 3.4

VMScore: 294

Vector: AV:L/AC:M/Au:N/C:N/I:P/A:P

lisp/net/tramp-sh.el in GNU Emacs 24.3 and previous versions allows local users to overwrite arbitrary files via a symlink attack on a /tmp/tramp.##### temporary file.

Vulnerable Product	Search on Vulmon	Subscribe to Product
mageia project mageia 4
mageia project mageia 3
gnu emacs 21.3.1
gnu emacs 21.4
gnu emacs 22.1
gnu emacs 22.2
gnu emacs 20.5
gnu emacs 20.1
gnu emacs 20.3
gnu emacs 21.2
gnu emacs 21.3
gnu emacs 22.3
gnu emacs 23.2
gnu emacs 20.6
gnu emacs 20.7
gnu emacs 21
gnu emacs 23.4
gnu emacs 24.1
gnu emacs 24.2
gnu emacs
gnu emacs 20.0
gnu emacs 20.2
gnu emacs 20.4
gnu emacs 21.1
gnu emacs 21.2.1
gnu emacs 23.1
gnu emacs 23.3

Debian Bug report logs - #747100 emacs23: Insecure use of temporary files in included lisp libraries/packages (CVE-2014-3421 CVE-2014-3422 CVE-2014-3423 CVE-2014-3424) Package: emacs23; Maintainer for emacs23 is Rob Browning <rlb@defaultvalueorg>; Source for emacs23 is src:emacs (PTS, buildd, popcon) Reported by: Steve Kemp ...

lisp/net/tramp-shel in GNU Emacs 243 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/tramp##### temporary file ...

CWE-59 http://lists.gnu.org/archive/html/emacs-diffs/2014-05/msg00060.html http://openwall.com/lists/oss-security/2014/05/07/7 http://debbugs.gnu.org/cgi/bugreport.cgi?bug=17428#8 http://advisories.mageia.org/MGASA-2014-0250.html http://www.mandriva.com/security/advisories?name=MDVSA-2015:117 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=747100 https://nvd.nist.gov https://access.redhat.com/security/cve/cve-2014-3424

CVE-2014-3424

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect