CVE Vulnerabilities

CVE-2014-2093

Published: Feb 26, 2014 | Modified: Mar 11, 2014
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4.6 MEDIUM
AV:L/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu
MEDIUM

Untrusted search path vulnerability in Catfish through 0.4.0.3 allows local users to gain privileges via a Trojan horse catfish.py in the current working directory.

Affected Software

Name Vendor Start Version End Version
Catfish Catfish_project 0.4.0 (including) 0.4.0 (including)
Catfish Catfish_project 0.4.0.1 (including) 0.4.0.1 (including)
Catfish Catfish_project 0.4.0.2 (including) 0.4.0.2 (including)
Catfish Catfish_project 0.4.0.3 (including) 0.4.0.3 (including)
Catfish Ubuntu lucid *
Catfish Ubuntu precise *
Catfish Ubuntu quantal *
Catfish Ubuntu saucy *
Catfish Ubuntu upstream *
Catfish Ubuntu utopic *
Catfish Ubuntu vivid *
Catfish Ubuntu wily *

References