CVE-2014-3423
low
CVSS v3
—
CVSS v2
3.3
VIR risk
3.3
Description
lisp/net/browse-url.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/Mosaic.##### temporary file.
Predictions
Exploit likelihood
20%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Vendor advisory: debian — https://security-tracker.debian.org/tracker/CVE-2014-3423
OS impact
| OS | Version | Status | Fixed in |
|---|---|---|---|
| debian | bookworm | fixed | 0 |
| debian | bullseye | fixed | 0 |
| debian | sid | fixed | 0 |
Application impact
| Vendor | Product | Versions | Fixed |
|---|---|---|---|
| gnu | emacs | {"endIncluding":"24.3"} | |
| gnu | emacs | 20.0 | |
| gnu | emacs | 20.1 | |
| gnu | emacs | 20.2 | |
| gnu | emacs | 20.3 | |
| gnu | emacs | 20.4 | |
| gnu | emacs | 20.5 | |
| gnu | emacs | 20.6 | |
| gnu | emacs | 20.7 | |
| gnu | emacs | 21 | |
| gnu | emacs | 21.1 | |
| gnu | emacs | 21.2 | |
| gnu | emacs | 21.2.1 | |
| gnu | emacs | 21.3 | |
| gnu | emacs | 21.3.1 | |
| gnu | emacs | 21.4 | |
| gnu | emacs | 22.1 | |
| gnu | emacs | 22.2 | |
| gnu | emacs | 22.3 | |
| gnu | emacs | 23.1 | |
| gnu | emacs | 23.2 | |
| gnu | emacs | 23.3 | |
| gnu | emacs | 23.4 | |
| gnu | emacs | 24.1 | |
| gnu | emacs | 24.2 | |
References
- http://advisories.mageia.org/MGASA-2014-0250.html
- http://debbugs.gnu.org/cgi/bugreport.cgi?bug=17428#8
- http://lists.gnu.org/archive/html/emacs-diffs/2014-05/msg00057.html
- http://openwall.com/lists/oss-security/2014/05/07/7
- http://www.mandriva.com/security/advisories?name=MDVSA-2015:117
- https://security-tracker.debian.org/tracker/CVE-2014-3423
CWEs
CWE-59
Verify integrity in audit chain (admin only). AS-IS.