Vulnerability CVE-2014-1875

Vulnerability Name:

CVE-2014-1875 (CCN-91464)

Assigned:

2014-02-25

Published:

2014-02-25

Updated:

2017-08-29

Summary:

The Capture::Tiny module before 0.24 for Perl allows local users to write to arbitrary files via a symlink attack on a temporary file.

CVSS v3 Severity:

5.1 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): Low Availibility (A): Low

CVSS v2 Severity:

3.6 Low (CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:P/A:P)
3.1 Low (Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:P/A:P/E:H/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): Partial

3.3 Low (CCN CVSS v2 Vector: AV:L/AC:M/Au:N/C:N/I:P/A:P)
2.9 Low (CCN Temporal CVSS v2 Vector: AV:L/AC:M/Au:N/C:N/I:P/A:P/E:H/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Medium Athentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): Partial

Vulnerability Type:

CWE-59

Vulnerability Consequences:

File Manipulation

References:

Source: CONFIRM
Type: UNKNOWN
http://cpansearch.perl.org/src/DAGOLDEN/Capture-Tiny-0.24/Changes

Source: MITRE
Type: CNA
CVE-2014-1875

Source: FEDORA
Type: UNKNOWN
FEDORA-2014-2261

Source: FEDORA
Type: UNKNOWN
FEDORA-2014-2321

Source: OSVDB
Type: UNKNOWN
102963

Source: MLIST
Type: Exploit
[oss-security] 20140206 CVE Request: Capture::Tiny: insecure use of /tmp

Source: MLIST
Type: UNKNOWN
[oss-security] 20140206 Re: CVE Request: Capture::Tiny: insecure use of /tmp

Source: CCN
Type: SA56823
Perl Capture::Tiny Insecure Temporary File Creation Security Issue

Source: SECUNIA
Type: UNKNOWN
56823

Source: BID
Type: UNKNOWN
65475

Source: CCN
Type: BID-65475
Perl Capture::Tiny 'lib/Capture/Tiny.pm' Insecure Temporary File Creation Vulnerability

Source: CONFIRM
Type: Exploit
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=737835

Source: CCN
Type: Red Hat Bugzilla Bug 1062424
CVE-2014-1875 perl-Capture-Tiny: insecure temporary file usage

Source: CONFIRM
Type: UNKNOWN
https://bugzilla.redhat.com/show_bug.cgi?id=1062424

Source: XF
Type: UNKNOWN
capturetiny-perl-symlink(91464)

Source: XF
Type: UNKNOWN
capturetiny-perl-symlink(91464)

Source: CCN
Type: Capture::Tiny GIT Repository
Capture::Tiny module for Perl

Source: CONFIRM
Type: UNKNOWN
https://github.com/dagolden/Capture-Tiny/commit/635c9eabd52ab8042b0c841823bd6e692de87924

Source: CONFIRM
Type: Exploit
https://github.com/dagolden/Capture-Tiny/issues/16

Vulnerable Configuration:

Configuration 1:

cpe:/a:cspan:capture-tiny:0.20:*:*:*:*:*:*:*

OR cpe:/a:cspan:capture-tiny:0.21:*:*:*:*:*:*:*

OR cpe:/a:cspan:capture-tiny:0.22:*:*:*:*:*:*:*

OR cpe:/a:cspan:capture-tiny:*:*:*:*:*:*:*:* (Version <= 0.23)

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:11148	P	Security update for hylafax+ (Moderate)	2021-11-21
oval:org.opensuse.security:def:11237	P	Security update for inn (Important)	2021-07-08
oval:org.opensuse.security:def:11897	P	libjavascriptcoregtk-1_0-0-2.4.11-23.20 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11875	P	libdcerpc-atsvc0-4.2.4-26.2 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11224	P	Security update for upx (Moderate)	2021-05-30
oval:org.opensuse.security:def:11215	P	Security update for jhead (Moderate)	2021-05-19
oval:org.opensuse.security:def:11173	P	Security update for segv_handler (Moderate)	2021-02-02
oval:org.opensuse.security:def:10946	P	java-1_7_1-ibm-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:11073	P	libtag-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10992	P	libexempi-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10916	P	freetype2-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:11039	P	libosip2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10924	P	ghostscript-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:11054	P	libqt4-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:20141875	V	CVE-2014-1875	2020-12-01
oval:com.ubuntu.precise:def:20141875000	V	CVE-2014-1875 on Ubuntu 12.04 LTS (precise) - medium.	2014-10-06
oval:com.ubuntu.xenial:def:201418750000000	V	CVE-2014-1875 on Ubuntu 16.04 LTS (xenial) - medium.	2014-10-06
oval:com.ubuntu.trusty:def:20141875000	V	CVE-2014-1875 on Ubuntu 14.04 LTS (trusty) - medium.	2014-10-06
oval:com.ubuntu.xenial:def:20141875000	V	CVE-2014-1875 on Ubuntu 16.04 LTS (xenial) - medium.	2014-10-06

BACK