Lucene search
HistoryMay 08, 2014 - 10:55 a.m.
CVE-2014-3424
security
information security
cve-2014-3424
gnu emacs
symlink attack
file overwrite
nvd
5.9 Medium
AI Score
Confidence
Low
3.3 Low
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:M/Au:N/C:N/I:P/A:P
0.0004 Low
EPSS
Percentile
5.2%
lisp/net/tramp-sh.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/tramp.##### temporary file.
Related
prion
prion
Arbitrary file deletion
2014-05-08 10:55:00
cvelist
cvelist
CVE-2014-3424
2014-05-08 10:00:00
ubuntucve
ubuntucve
CVE-2014-3424
2014-05-08 00:00:00
debiancve
debiancve
CVE-2014-3424
2014-05-08 10:55:00
nessus
nessus
EulerOS 2.0 SP3 : emacs (EulerOS-SA-2022-1714)
2022-05-26 00:00:00
EulerOS 2.0 SP5 : emacs (EulerOS-SA-2022-1528)
2022-04-25 00:00:00
EulerOS Virtualization 3.0.6.6 : emacs (EulerOS-SA-2022-2494)
2022-10-09 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for emacs (EulerOS-SA-2022-2494)
2022-10-10 00:00:00
Huawei EulerOS: Security Advisory for emacs (EulerOS-SA-2022-1528)
2022-04-25 00:00:00
Huawei EulerOS: Security Advisory for emacs (EulerOS-SA-2022-1714)
2022-05-25 00:00:00
mageia
mageia
Updated emacs packages fix CVE-2014-3421-4
2014-06-06 09:47:18
fedora
fedora
[SECURITY] Fedora 20 Update: emacs-24.3-17.fc20
2014-05-29 23:29:06
kaspersky
kaspersky
KLA10169 WLF vulnerability in Emacs
2014-05-08 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1828
2021-07-02 16:39:27
securityvulns
securityvulns
GNU Emacs
2014-05-10 00:00:00
5.9 Medium
AI Score
Confidence
Low
3.3 Low
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:M/Au:N/C:N/I:P/A:P
0.0004 Low
EPSS
Percentile
5.2%
Related for CVE-2014-3424