CVE-2014-1934

Published May 8, 2014
Last updated 6 years ago
Overview

Description: tag.py in eyeD3 (aka python-eyed3) 7.0.3, 0.6.18, and earlier for Python allows local users to modify arbitrary files via a symlink attack on a temporary file.
Source: cve@mitre.org
NVD status: Analyzed
Hype score: Not currently trending
Risk scores

CVSS 2.0

Type: Primary
Base score: 3.3
Impact score: 4.9
Exploitability score: 3.4
Vector string: AV:L/AC:M/Au:N/C:N/I:P/A:P
Weaknesses

nvd@nist.gov: CWE-59
Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:travis_shirk:eyed3:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3753CCC3-2A3A-4CF9-B7BF-EB08635C7756",
            "versionEndIncluding": "0.6.18"
          },
          {
            "criteria": "cpe:2.3:a:travis_shirk:eyed3:0.1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "26731967-219F-44F0-AE7B-D006F14AA512"
          },
          {
            "criteria": "cpe:2.3:a:travis_shirk:eyed3:0.2.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AD15C640-B205-4627-9382-3E52EB27A021"
          },
          {
            "criteria": "cpe:2.3:a:travis_shirk:eyed3:0.3.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2D4BBBF5-FB1D-4C52-B33B-8FDAE190A601"
          },
          {
            "criteria": "cpe:2.3:a:travis_shirk:eyed3:0.3.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9F397FA3-74BA-483A-8333-8F7AD5B4FC1D"
          },
          {
            "criteria": "cpe:2.3:a:travis_shirk:eyed3:0.4.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "57B24CD4-79F4-48F2-AC1F-7335E54D74EB"
          },
          {
            "criteria": "cpe:2.3:a:travis_shirk:eyed3:0.5.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B35C8B06-C1CA-45E4-87E3-C036A87445D5"
          },
          {
            "criteria": "cpe:2.3:a:travis_shirk:eyed3:0.5.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CEC2B996-468A-4787-93FE-1FF253D1314A"
          },
          {
            "criteria": "cpe:2.3:a:travis_shirk:eyed3:0.6.0:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "16CE9740-6539-4DB3-A101-D8150A2D88D0"
          },
          {
            "criteria": "cpe:2.3:a:travis_shirk:eyed3:0.6.0:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "ACA52E31-6065-4705-AA30-CBC02EE867C2"
          },
          {
            "criteria": "cpe:2.3:a:travis_shirk:eyed3:0.6.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E2100685-9F99-4B25-9832-23CEA0668310"
          },
          {
            "criteria": "cpe:2.3:a:travis_shirk:eyed3:0.6.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8466BE0E-CACF-4984-B0B0-F272926961AB"
          },
          {
            "criteria": "cpe:2.3:a:travis_shirk:eyed3:0.6.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "273D7671-3DCE-48CE-B9BC-8448FFC326D8"
          },
          {
            "criteria": "cpe:2.3:a:travis_shirk:eyed3:0.6.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3A5B656E-3715-41CB-849F-DA58421B0700"
          },
          {
            "criteria": "cpe:2.3:a:travis_shirk:eyed3:0.6.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D811F61C-CEAA-4584-9C91-DA4045CFAE43"
          },
          {
            "criteria": "cpe:2.3:a:travis_shirk:eyed3:0.6.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5222A691-EF45-4152-8D3A-38873A61FD37"
          },
          {
            "criteria": "cpe:2.3:a:travis_shirk:eyed3:0.6.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A495204F-4C4D-4249-8027-5E5322ACE321"
          },
          {
            "criteria": "cpe:2.3:a:travis_shirk:eyed3:0.6.9:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CAA399B8-3F50-44B9-963F-5013981452A5"
          },
          {
            "criteria": "cpe:2.3:a:travis_shirk:eyed3:0.6.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C5CB848D-AAC1-4800-873F-FC713CBB2A7F"
          },
          {
            "criteria": "cpe:2.3:a:travis_shirk:eyed3:0.6.11:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C69256FF-DB5F-42D0-BE58-AF899A02DC54"
          },
          {
            "criteria": "cpe:2.3:a:travis_shirk:eyed3:0.6.12:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A940E692-FD86-40DF-8CCC-50F7C34C393D"
          },
          {
            "criteria": "cpe:2.3:a:travis_shirk:eyed3:0.6.13:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "51682013-D2F5-423B-9048-57D89D8D1788"
          },
          {
            "criteria": "cpe:2.3:a:travis_shirk:eyed3:0.6.14:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6BAA733B-0BEE-4A22-91A8-5DB510A8B833"
          },
          {
            "criteria": "cpe:2.3:a:travis_shirk:eyed3:0.6.15:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F4ABCFBA-15C2-4124-9E88-89871CE3EC2B"
          },
          {
            "criteria": "cpe:2.3:a:travis_shirk:eyed3:0.6.16:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E488726C-CD65-44D0-95B7-8A337785473E"
          },
          {
            "criteria": "cpe:2.3:a:travis_shirk:eyed3:0.6.17:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "44A7282B-6BB8-448F-8652-F16FBAF8A09E"
          },
          {
            "criteria": "cpe:2.3:a:travis_shirk:eyed3:0.7.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D8E45654-396B-4A7D-B90F-EEFC1F8C0756"
          },
          {
            "criteria": "cpe:2.3:o:opensuse:opensuse:12.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DFBF430B-0832-44B0-AA0E-BA9E467F7668"
          },
          {
            "criteria": "cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A10BC294-9196-425F-9FB0-B1625465B47F"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]
Overview

Social media

Risk scores

CVSS 2.0

Weaknesses

Configurations

References
