Lucene search

Debian Security Bug TrackerDEBIANCVE:CVE-2014-2079

HistoryJul 16, 2018 - 2:29 p.m.

CVE-2014-2079

2018-07-1614:29:00

Debian Security Bug Tracker

security-tracker.debian.org

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

0.0004 Low

EPSS

Percentile

5.1%

JSON

X File Explorer (aka xfe) might allow local users to bypass intended access restrictions and gain access to arbitrary files by leveraging failure to use directory masks when creating files on Samba and NFS shares.

OSVersionArchitecturePackageVersionFilename
Debian12allxfe< 1.37-2xfe_1.37-2_all.deb
Debian11allxfe< 1.37-2xfe_1.37-2_all.deb
Debian10allxfe< 1.37-2xfe_1.37-2_all.deb
Debian999allxfe< 1.37-2xfe_1.37-2_all.deb
Debian13allxfe< 1.37-2xfe_1.37-2_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	12	all	xfe	< 1.37-2	xfe_1.37-2_all.deb
Debian	11	all	xfe	< 1.37-2	xfe_1.37-2_all.deb
Debian	10	all	xfe	< 1.37-2	xfe_1.37-2_all.deb
Debian	999	all	xfe	< 1.37-2	xfe_1.37-2_all.deb
Debian	13	all	xfe	< 1.37-2	xfe_1.37-2_all.deb

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for DEBIANCVE:CVE-2014-2079