CVE-2014-3424
Notifications for a CVE
Stay informed of any changes for a specific CVE.
CVE Descriptions
lisp/net/tramp-sh.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/tramp.##### temporary file.
CVE Informations
Related Weaknesses
| Weakness Name | Source | |
|---|---|---|
| Improper Link Resolution Before File Access ('Link Following') The product attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource. |
Metrics
| Metrics | Score | Severity | CVSS Vector | Source |
|---|---|---|---|---|
| V2 | 3.3 | AV:L/AC:M/Au:N/C:N/I:P/A:P | nvd@nist.gov |
EPSS
EPSS is a scoring model that predicts the likelihood of a vulnerability being exploited.
EPSS Score
The EPSS model produces a probability score between 0 and 1 (0 and 100%). The higher the score, the greater the probability that a vulnerability will be exploited.
EPSS Percentile
The percentile is used to rank CVE according to their EPSS score. For example, a CVE in the 95th percentile according to its EPSS score is more likely to be exploited than 95% of other CVE. Thus, the percentile is used to compare the EPSS score of a CVE with that of other CVE.
Products Mentioned
Configuraton 0
Mageia_project>>Mageia >> Version 3
Mageia_project>>Mageia >> Version 4
Configuraton 0
Gnu>>Emacs >> Version To (including) 24.3
- Gnu>>Emacs >> Version - (Open CPE detail)
- Gnu>>Emacs >> Version 13 (Open CPE detail)
- Gnu>>Emacs >> Version 15.10 (Open CPE detail)
- Gnu>>Emacs >> Version 15.34 (Open CPE detail)
- Gnu>>Emacs >> Version 16.56 (Open CPE detail)
- Gnu>>Emacs >> Version 16.57 (Open CPE detail)
- Gnu>>Emacs >> Version 16.58 (Open CPE detail)
- Gnu>>Emacs >> Version 16.59 (Open CPE detail)
- Gnu>>Emacs >> Version 16.60 (Open CPE detail)
- Gnu>>Emacs >> Version 17.36 (Open CPE detail)
- Gnu>>Emacs >> Version 17.43 (Open CPE detail)
- Gnu>>Emacs >> Version 17.46 (Open CPE detail)
- Gnu>>Emacs >> Version 17.48 (Open CPE detail)
- Gnu>>Emacs >> Version 17.49 (Open CPE detail)
- Gnu>>Emacs >> Version 17.55 (Open CPE detail)
- Gnu>>Emacs >> Version 17.57 (Open CPE detail)
- Gnu>>Emacs >> Version 17.58 (Open CPE detail)
- Gnu>>Emacs >> Version 17.61 (Open CPE detail)
- Gnu>>Emacs >> Version 17.63 (Open CPE detail)
- Gnu>>Emacs >> Version 17.64 (Open CPE detail)
- Gnu>>Emacs >> Version 18.41 (Open CPE detail)
- Gnu>>Emacs >> Version 18.45 (Open CPE detail)
- Gnu>>Emacs >> Version 18.46 (Open CPE detail)
- Gnu>>Emacs >> Version 18.47 (Open CPE detail)
- Gnu>>Emacs >> Version 18.48 (Open CPE detail)
- Gnu>>Emacs >> Version 18.49 (Open CPE detail)
- Gnu>>Emacs >> Version 18.50 (Open CPE detail)
- Gnu>>Emacs >> Version 18.51 (Open CPE detail)
- Gnu>>Emacs >> Version 18.52 (Open CPE detail)
- Gnu>>Emacs >> Version 18.53 (Open CPE detail)
- Gnu>>Emacs >> Version 18.54 (Open CPE detail)
- Gnu>>Emacs >> Version 18.55 (Open CPE detail)
- Gnu>>Emacs >> Version 18.56 (Open CPE detail)
- Gnu>>Emacs >> Version 18.57 (Open CPE detail)
- Gnu>>Emacs >> Version 18.58 (Open CPE detail)
- Gnu>>Emacs >> Version 18.59 (Open CPE detail)
- Gnu>>Emacs >> Version 19.7 (Open CPE detail)
- Gnu>>Emacs >> Version 19.8 (Open CPE detail)
- Gnu>>Emacs >> Version 19.9 (Open CPE detail)
- Gnu>>Emacs >> Version 19.10 (Open CPE detail)
- Gnu>>Emacs >> Version 19.11 (Open CPE detail)
- Gnu>>Emacs >> Version 19.12 (Open CPE detail)
- Gnu>>Emacs >> Version 19.13 (Open CPE detail)
- Gnu>>Emacs >> Version 19.14 (Open CPE detail)
- Gnu>>Emacs >> Version 19.15 (Open CPE detail)
- Gnu>>Emacs >> Version 19.16 (Open CPE detail)
- Gnu>>Emacs >> Version 19.17 (Open CPE detail)
- Gnu>>Emacs >> Version 19.18 (Open CPE detail)
- Gnu>>Emacs >> Version 19.19 (Open CPE detail)
- Gnu>>Emacs >> Version 19.20 (Open CPE detail)
- Gnu>>Emacs >> Version 19.21 (Open CPE detail)
- Gnu>>Emacs >> Version 19.22 (Open CPE detail)
- Gnu>>Emacs >> Version 19.23 (Open CPE detail)
- Gnu>>Emacs >> Version 19.24 (Open CPE detail)
- Gnu>>Emacs >> Version 19.25 (Open CPE detail)
- Gnu>>Emacs >> Version 19.26 (Open CPE detail)
- Gnu>>Emacs >> Version 19.28 (Open CPE detail)
- Gnu>>Emacs >> Version 19.29 (Open CPE detail)
- Gnu>>Emacs >> Version 19.30 (Open CPE detail)
- Gnu>>Emacs >> Version 19.31 (Open CPE detail)
- Gnu>>Emacs >> Version 19.32 (Open CPE detail)
- Gnu>>Emacs >> Version 19.33 (Open CPE detail)
- Gnu>>Emacs >> Version 19.34 (Open CPE detail)
- Gnu>>Emacs >> Version 20.0 (Open CPE detail)
- Gnu>>Emacs >> Version 20.1 (Open CPE detail)
- Gnu>>Emacs >> Version 20.2 (Open CPE detail)
- Gnu>>Emacs >> Version 20.3 (Open CPE detail)
- Gnu>>Emacs >> Version 20.4 (Open CPE detail)
- Gnu>>Emacs >> Version 20.5 (Open CPE detail)
- Gnu>>Emacs >> Version 20.6 (Open CPE detail)
- Gnu>>Emacs >> Version 20.7 (Open CPE detail)
- Gnu>>Emacs >> Version 21 (Open CPE detail)
- Gnu>>Emacs >> Version 21.1 (Open CPE detail)
- Gnu>>Emacs >> Version 21.2 (Open CPE detail)
- Gnu>>Emacs >> Version 21.2.1 (Open CPE detail)
- Gnu>>Emacs >> Version 21.3 (Open CPE detail)
- Gnu>>Emacs >> Version 21.3.1 (Open CPE detail)
- Gnu>>Emacs >> Version 21.4 (Open CPE detail)
- Gnu>>Emacs >> Version 21.4a (Open CPE detail)
- Gnu>>Emacs >> Version 22.1 (Open CPE detail)
- Gnu>>Emacs >> Version 22.2 (Open CPE detail)
- Gnu>>Emacs >> Version 22.3 (Open CPE detail)
- Gnu>>Emacs >> Version 23.1 (Open CPE detail)
- Gnu>>Emacs >> Version 23.2 (Open CPE detail)
- Gnu>>Emacs >> Version 23.2b (Open CPE detail)
- Gnu>>Emacs >> Version 23.3 (Open CPE detail)
- Gnu>>Emacs >> Version 23.3b (Open CPE detail)
- Gnu>>Emacs >> Version 23.4 (Open CPE detail)
- Gnu>>Emacs >> Version 24.1 (Open CPE detail)
- Gnu>>Emacs >> Version 24.2 (Open CPE detail)
- Gnu>>Emacs >> Version 24.3 (Open CPE detail)
Gnu>>Emacs >> Version 20.0
- Gnu>>Emacs >> Version 20.0 (Open CPE detail)
Gnu>>Emacs >> Version 20.1
- Gnu>>Emacs >> Version 20.1 (Open CPE detail)
Gnu>>Emacs >> Version 20.2
- Gnu>>Emacs >> Version 20.2 (Open CPE detail)
Gnu>>Emacs >> Version 20.3
- Gnu>>Emacs >> Version 20.3 (Open CPE detail)
Gnu>>Emacs >> Version 20.4
- Gnu>>Emacs >> Version 20.4 (Open CPE detail)
Gnu>>Emacs >> Version 20.5
- Gnu>>Emacs >> Version 20.5 (Open CPE detail)
Gnu>>Emacs >> Version 20.6
- Gnu>>Emacs >> Version 20.6 (Open CPE detail)
Gnu>>Emacs >> Version 20.7
- Gnu>>Emacs >> Version 20.7 (Open CPE detail)
Gnu>>Emacs >> Version 21
- Gnu>>Emacs >> Version 21 (Open CPE detail)
Gnu>>Emacs >> Version 21.1
- Gnu>>Emacs >> Version 21.1 (Open CPE detail)
Gnu>>Emacs >> Version 21.2
- Gnu>>Emacs >> Version 21.2 (Open CPE detail)
Gnu>>Emacs >> Version 21.2.1
- Gnu>>Emacs >> Version 21.2.1 (Open CPE detail)
Gnu>>Emacs >> Version 21.3
- Gnu>>Emacs >> Version 21.3 (Open CPE detail)
Gnu>>Emacs >> Version 21.3.1
- Gnu>>Emacs >> Version 21.3.1 (Open CPE detail)
Gnu>>Emacs >> Version 21.4
- Gnu>>Emacs >> Version 21.4 (Open CPE detail)
Gnu>>Emacs >> Version 22.1
- Gnu>>Emacs >> Version 22.1 (Open CPE detail)
Gnu>>Emacs >> Version 22.2
- Gnu>>Emacs >> Version 22.2 (Open CPE detail)
Gnu>>Emacs >> Version 22.3
- Gnu>>Emacs >> Version 22.3 (Open CPE detail)
Gnu>>Emacs >> Version 23.1
- Gnu>>Emacs >> Version 23.1 (Open CPE detail)
Gnu>>Emacs >> Version 23.2
- Gnu>>Emacs >> Version 23.2 (Open CPE detail)
Gnu>>Emacs >> Version 23.3
- Gnu>>Emacs >> Version 23.3 (Open CPE detail)
Gnu>>Emacs >> Version 23.4
- Gnu>>Emacs >> Version 23.4 (Open CPE detail)
Gnu>>Emacs >> Version 24.1
- Gnu>>Emacs >> Version 24.1 (Open CPE detail)
Gnu>>Emacs >> Version 24.2
- Gnu>>Emacs >> Version 24.2 (Open CPE detail)
References
http://lists.gnu.org/archive/html/emacs-diffs/2014-05/msg00060.html
Tags : mailing-list, x_refsource_MLIST
Tags : mailing-list, x_refsource_MLIST
http://www.mandriva.com/security/advisories?name=MDVSA-2015:117
Tags : vendor-advisory, x_refsource_MANDRIVA
Tags : vendor-advisory, x_refsource_MANDRIVA
2025©
tesweb SA
