The play_wave_from_socket function in audio/auserver.c in Flite 1.4 allows local users to modify arbitrary files via a symlink attack on /tmp/awb.wav. NOTE: some of these details are obtained from third party information.
References
Configurations
History
07 Nov 2023, 02:18
Type | Values Removed | Values Added |
---|---|---|
Summary | The play_wave_from_socket function in audio/auserver.c in Flite 1.4 allows local users to modify arbitrary files via a symlink attack on /tmp/awb.wav. NOTE: some of these details are obtained from third party information. |
13 Feb 2023, 00:29
Type | Values Removed | Values Added |
---|---|---|
Summary | The play_wave_from_socket function in audio/auserver.c in Flite 1.4 allows local users to modify arbitrary files via a symlink attack on /tmp/awb.wav. NOTE: some of these details are obtained from third party information. |
Information
Published : 2014-01-26 01:55
Updated : 2023-12-10 11:31
NVD link : CVE-2014-0027
Mitre link : CVE-2014-0027
CVE.ORG link : CVE-2014-0027
JSON object : View
Products Affected
cmu
- flite
CWE
CWE-59
Improper Link Resolution Before File Access ('Link Following')