[prev in list] [next in list] [prev in thread] [next in thread] 

List:       oss-security
Subject:    [oss-security] Re: T201403525 - Hypercube security Advisory
From:       cve-assign () mitre ! org
Date:       2014-03-27 4:41:41
Message-ID: 201403270441.s2R4ffN1011851 () linus ! mitre ! org
[Download RAW message or body]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

> Hypercube -
> http://sourceforge.net/projects/hypercubegraphv/files/latest/download
> 
> Version 1.62 is vulnerable to arbitrary insertions of malicious data
> within cube parameters (see PARAMETER below)
> 
> <PARAMETER P="rm /etc/motd; ln -s /etc/motd /dev/random; cat /dev/zero >

Use CVE-2014-2656.

- -- 
CVE assignment team, MITRE CVE Numbering Authority
M/S M300
202 Burlington Road, Bedford, MA 01730 USA
[ PGP key available through http://cve.mitre.org/cve/request_id.html ]
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.14 (SunOS)

iQEcBAEBAgAGBQJTM6jWAAoJEKllVAevmvms3cgH/3cWEhpSnlLtNWcFUP/+rAnO
vS+09BGsMHscb6/dnCSKtPfxaiH73s33jul59FFYjV81S3uVXGummvEVQrbImghE
tm3F7Ad+y1pw/2XDdUIrHyvSP+jiUH54YP5hWX2OZyb6qq53yxYh6SpRMmAhgdLm
LYf16cBTKJWhWqPzMQs+TG/MEkCDY8A7brrDzFfTwOp8ftMs3ocHC5Nbm2LTiaPX
lkdjNYOFqbQUjNYr3gBjYcTO5rP+xrfndCiAMu9D/JLRxbIx3gIaGHMF+6ImdFZp
nHLuRz3VJN0WjcYnmxUDwruuT6CkRFI2KfPJzwy+z9ywOOF+WhpvqsERlh+7K6I=
=3gm1
-----END PGP SIGNATURE-----
[prev in list] [next in list] [prev in thread] [next in thread]