Lucene search
K

7 matches found

OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.13 views

Mageia: Security Advisory (MGASA-2014-0047)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

3.3CVSS6.6AI score0.00331EPSS
Exploits1References4
securityvulns
securityvulns
added 2014/02/18 12:0 a.m.42 views

[ MDVSA-2014:032 ] flite

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2014:032 http://www.mandriva.com/en/support/security/ Package : flite Date : February 14, 2014 Affected: Business Server 1.0 Problem Description: Multiple vulnerabilities has been discovered and corrected in flit...

3.3CVSS6AI score0.00331EPSS
Exploits1
OSV
OSV
added 2014/02/10 8:14 p.m.7 views

MGASA-2014-0047 Updated flite package fixes CVE-2014-0027

Updated flite packages fix security vulnerability: The playwavefromsocket function in audio/auserver.c in Flite 1.4 allows local users to modify arbitrary files via a symlink attack on /tmp/awb.wav CVE-2014-0027...

3.3CVSS6.3AI score0.00331EPSS
Exploits1References3
OSV
OSV
added 2014/01/26 1:55 a.m.7 views

CVE-2014-0027

The playwavefromsocket function in audio/auserver.c in Flite 1.4 allows local users to modify arbitrary files via a symlink attack on /tmp/awb.wav. NOTE: some of these details are obtained from third party information...

6AI score
Exploits0References7
UbuntuCve
UbuntuCve
added 2014/01/26 1:55 a.m.23 views

CVE-2014-0027

The playwavefromsocket function in audio/auserver.c in Flite 1.4 allows local users to modify arbitrary files via a symlink attack on /tmp/awb.wav. NOTE: some of these details are obtained from third party information...

3.3CVSS6AI score0.00331EPSS
Exploits1References2
Debian CVE
Debian CVE
added 2014/01/26 1:0 a.m.20 views

CVE-2014-0027

The playwavefromsocket function in audio/auserver.c in Flite 1.4 allows local users to modify arbitrary files via a symlink attack on /tmp/awb.wav. NOTE: some of these details are obtained from third party information...

3.3CVSS6.1AI score0.00331EPSS
Exploits1
CVE
CVE
added 2014/01/26 1:0 a.m.58 views

CVE-2014-0027

CVE-2014-0027 affects Flite 1.4. The vulnerability is in play_wave_from_socket (audio/auserver.c) allowing local users to modify arbitrary files via a symlink attack on /tmp/awb.wav. Root cause is insecure handling of /tmp/awb.wav leading to path-traversal via symlink. Impact per NVD: local acces...

3.3CVSS6.1AI score0.00331EPSS
Exploits1References7Affected Software1
Rows per page
Query Builder