Lucene search

Debian Security Bug TrackerDEBIANCVE:CVE-2014-2079

HistoryJul 16, 2018 - 2:29 p.m.

CVE-2014-2079

2018-07-1614:29:00

Debian Security Bug Tracker

security-tracker.debian.org

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

EPSS

Percentile

5.1%

JSON

X File Explorer (aka xfe) might allow local users to bypass intended access restrictions and gain access to arbitrary files by leveraging failure to use directory masks when creating files on Samba and NFS shares.

OSVersionArchitecturePackageVersionFilename
Debian12allxfe< 1.37-2xfe_1.37-2_all.deb
Debian11allxfe< 1.37-2xfe_1.37-2_all.deb
Debian999allxfe< 1.37-2xfe_1.37-2_all.deb
Debian13allxfe< 1.37-2xfe_1.37-2_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	12	all	xfe	< 1.37-2	xfe_1.37-2_all.deb
Debian	11	all	xfe	< 1.37-2	xfe_1.37-2_all.deb
Debian	999	all	xfe	< 1.37-2	xfe_1.37-2_all.deb
Debian	13	all	xfe	< 1.37-2	xfe_1.37-2_all.deb

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

EPSS

Percentile

5.1%

JSON

Related for DEBIANCVE:CVE-2014-2079