Lucene search
GoogleOSV:GHSA-4R2W-W73W-36JMHistoryMay 14, 2022 - 2:09 a.m.
eyeD3 is vulnerable to arbitrary file modification via symlink attack
2022-05-1402:09:24
Google
osv.dev
4
0.0004 Low
EPSS
Percentile
5.1%
tag.py in eyeD3 (aka python-eyed3) 0.7.5 and earlier for Python allows local users to modify arbitrary files via a symlink attack on a temporary file.
References
lists.opensuse.org/opensuse-updates/2014-05/msg00027.html
lists.opensuse.org/opensuse-updates/2014-05/msg00028.html
bugs.debian.org/cgi-bin/bugreport.cgi?bug=737062
bugzilla.redhat.com/show_bug.cgi?id=1063671
github.com/nicfit/eyeD3
koji.fedoraproject.org/koji/buildinfo?buildID=594272
nvd.nist.gov/vuln/detail/CVE-2014-1934
Related
nessus
nessus
Fedora 21 : python-eyed3-0.7.4-4.fc21 (2014-15450)
2014-12-07 00:00:00
Fedora 19 : python-eyed3-0.7.4-4.fc19 (2014-15477)
2014-12-02 00:00:00
openSUSE Security Update : python-eyeD3 (openSUSE-SU-2014:0619-1)
2014-06-13 00:00:00
openvas
openvas
Fedora Update for python-eyed3 FEDORA-2014-15464
2014-12-02 00:00:00
Fedora Update for python-eyed3 FEDORA-2014-15477
2014-12-02 00:00:00
Fedora Update for python-eyed3 FEDORA-2014-15450
2015-01-05 00:00:00
nvd
nvd
CVE-2014-1934
2014-05-08 14:29:14
fedora
fedora
[SECURITY] Fedora 20 Update: python-eyed3-0.7.4-4.fc20
2014-12-01 19:04:23
[SECURITY] Fedora 21 Update: python-eyed3-0.7.4-4.fc21
2014-12-06 10:14:22
[SECURITY] Fedora 19 Update: python-eyed3-0.7.4-4.fc19
2014-12-01 19:04:18
debiancve
debiancve
CVE-2014-1934
2014-05-08 14:29:14
cvelist
cvelist
CVE-2014-1934
2014-05-08 14:00:00
github
github
eyeD3 is vulnerable to arbitrary file modification via symlink attack
2022-05-14 02:09:24
prion
prion
Arbitrary file deletion
2014-05-08 14:29:00
cve
cve
CVE-2014-1934
2014-05-08 14:29:14
ubuntucve
ubuntucve
CVE-2014-1934
2014-05-08 00:00:00