Lucene search
HistoryOct 15, 2014 - 2:55 p.m.
CVE-2014-7206
cve-2014-7206
security
vulnerability
apt
symlink attack
changelog command
nvd
6.1 Medium
AI Score
Confidence
Low
3.6 Low
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:N/I:P/A:P
0.0004 Low
EPSS
Percentile
5.2%
The changelog command in Apt before 1.0.9.2 allows local users to write to arbitrary files via a symlink attack on the changelog file.
Related
openvas
openvas
Debian Security Advisory DSA 3048-1 (apt - security update)
2014-10-08 00:00:00
Ubuntu: Security Advisory (USN-2370-1)
2014-10-09 00:00:00
Debian: Security Advisory (DSA-3048-1)
2014-10-07 00:00:00
nessus
nessus
Debian DSA-3048-1 : apt - security update
2014-10-09 00:00:00
Ubuntu 14.04 LTS : APT vulnerability (USN-2370-1)
2014-10-09 00:00:00
securityvulns
securityvulns
apt symbolic links vulnerability
2014-10-13 00:00:00
[SECURITY] [DSA 3048-1] apt security update
2014-10-13 00:00:00
cvelist
cvelist
CVE-2014-7206
2014-10-15 14:00:00
ubuntu
ubuntu
APT vulnerability
2014-10-08 00:00:00
debian
debian
[SECURITY] [DSA 3048-1] apt security update
2014-10-08 16:21:51
osv
osv
apt - security update
2014-10-08 00:00:00
prion
prion
Code injection
2014-10-15 14:55:00
ubuntucve
ubuntucve
CVE-2014-7206
2014-10-08 00:00:00
debiancve
debiancve
CVE-2014-7206
2014-10-15 14:55:00
6.1 Medium
AI Score
Confidence
Low
3.6 Low
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:N/I:P/A:P
0.0004 Low
EPSS
Percentile
5.2%
Related for CVE-2014-7206