[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

249461

 
 

909

 
 

195508

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2014-1932Date: (C)2014-04-25   (M)2023-12-22


The (1) load_djpeg function in JpegImagePlugin.py, (2) Ghostscript function in EpsImagePlugin.py, (3) load function in IptcImagePlugin.py, and (4) _copy function in Image.py in Python Image Library (PIL) 1.1.7 and earlier and Pillow before 2.3.1 do not properly create temporary files, which allow local users to overwrite arbitrary files and obtain sensitive information via a symlink attack on the temporary file.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 4.4
Exploit Score: 3.4
Impact Score: 6.4
 
CVSS V2 Metrics:
Access Vector: LOCAL
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality: PARTIAL
Integrity: PARTIAL
Availability: PARTIAL
  
Reference:
BID-65511
GLSA-201612-52
USN-2168-1
http://www.openwall.com/lists/oss-security/2014/02/11/1
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=737059
https://github.com/python-imaging/Pillow/commit/4e9f367dfd3f04c8f5d23f7f759ec12782e10ee7
openSUSE-SU-2014:0591

CPE    2
cpe:/a:pythonware:python_imaging_library:1.1.7
cpe:/a:python:pillow:2.3.0
CWE    1
CWE-59
OVAL    4
oval:org.secpod.oval:def:107950
oval:org.secpod.oval:def:107964
oval:org.secpod.oval:def:701637
oval:org.secpod.oval:def:1701806
...

© SecPod Technologies