Vulnerability Details : CVE-2014-9447
Directory traversal vulnerability in the read_long_names function in libelf/elf_begin.c in elfutils 0.152 and 0.161 allows remote attackers to write to arbitrary files to the root directory via a / (slash) in a crafted archive, as demonstrated using the ar program.
Vulnerability category: Directory traversal
Exploit prediction scoring system (EPSS) score for CVE-2014-9447
Probability of exploitation activity in the next 30 days: 0.95%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 81 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2014-9447
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
6.4
|
MEDIUM | AV:N/AC:L/Au:N/C:N/I:P/A:P |
10.0
|
4.9
|
NIST |
CWE ids for CVE-2014-9447
-
The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.Assigned by: nvd@nist.gov (Primary)
References for CVE-2014-9447
-
http://lists.fedoraproject.org/pipermail/package-announce/2015-January/148321.html
[SECURITY] Fedora 21 Update: elfutils-0.161-2.fc21
-
https://lists.fedorahosted.org/pipermail/elfutils-devel/2014-December/004499.html
Directory traversal in `ar`
-
http://www.openwall.com/lists/oss-security/2014/12/29/2
oss-security - CVE request: dir traversal in elfutils
-
http://advisories.mageia.org/MGASA-2015-0033.html
Mageia Advisory: MGASA-2015-0033 - Updated elfutils packages fix CVE-2014-9447
-
http://lists.fedoraproject.org/pipermail/package-announce/2015-January/148326.html
503 Backend fetch failed
-
http://www.securityfocus.com/bid/71804
elfutils '/libelf/elf_begin.c' Directory Traversal Vulnerability
-
https://git.fedorahosted.org/cgit/elfutils.git/commit/?id=147018e729e7c22eeabf15b82d26e4bf68a0d18e
Infrastructure/Fedorahosted-retirement - Fedora Project WikiVendor Advisory
-
http://www.mandriva.com/security/advisories?name=MDVSA-2015:047
mandriva.com
Products affected by CVE-2014-9447
- cpe:2.3:a:elfutils_project:elfutils:0.152:*:*:*:*:*:*:*
- cpe:2.3:a:elfutils_project:elfutils:0.161:*:*:*:*:*:*:*