CVE-2010-3996

2010-11-0517:00:03

mitre

web.nvd.nist.gov

cve-2010-3996

cstr festival

festival_server

gain privileges

security vulnerability

CVSS2

6.9

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

AI Score

6.4

Confidence

Low

EPSS

Percentile

5.1%

JSON

festival_server in Centre for Speech Technology Research (CSTR) Festival, probably 2.0.95-beta and earlier, places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory.

Affected configurations

Nvd

Node

cstrfestivalRange≤2.0.95beta

cstrfestivalMatch1.4.1

cstrfestivalMatch1.4.2

cstrfestivalMatch1.4.3

cstrfestivalMatch1.95

cstrfestivalMatch1.96

VendorProductVersionCPE
cstrfestival*cpe:2.3:a:cstr:festival:*:beta:*:*:*:*:*:*
cstrfestival1.4.1cpe:2.3:a:cstr:festival:1.4.1:*:*:*:*:*:*:*
cstrfestival1.4.2cpe:2.3:a:cstr:festival:1.4.2:*:*:*:*:*:*:*
cstrfestival1.4.3cpe:2.3:a:cstr:festival:1.4.3:*:*:*:*:*:*:*
cstrfestival1.95cpe:2.3:a:cstr:festival:1.95:*:*:*:*:*:*:*
cstrfestival1.96cpe:2.3:a:cstr:festival:1.96:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cstr	festival	*	cpe:2.3:a:cstr:festival::beta::::::*
cstr	festival	1.4.1	cpe:2.3:a:cstr:festival:1.4.1:::::::*
cstr	festival	1.4.2	cpe:2.3:a:cstr:festival:1.4.2:::::::*
cstr	festival	1.4.3	cpe:2.3:a:cstr:festival:1.4.3:::::::*
cstr	festival	1.95	cpe:2.3:a:cstr:festival:1.95:::::::*
cstr	festival	1.96	cpe:2.3:a:cstr:festival:1.96:::::::*