CVE-2013-1874
Untrusted search path vulnerability in csi in Chicken before 4.8.2 allows local users to execute arbitrary code via a Trojan horse .csirc in the current working directory.
| Software | From | Fixed in |
|---|---|---|
| call-cc / chicken | 4.8.0.1 | 4.8.0.1.x |
| call-cc / chicken | 4.8.0.2 | 4.8.0.2.x |
| call-cc / chicken | 4.8.0.3 | 4.8.0.3.x |
| call-cc / chicken | 4.8.0.6 | 4.8.0.6.x |
| call-cc / chicken | 4.8.0-rc1 | 4.8.0-rc1.x |
| call-cc / chicken | 4.8.0 | 4.8.0.x |
| call-cc / chicken | 4.8.0-rc4 | 4.8.0-rc4.x |
| call-cc / chicken | 4.8.0.4 | 4.8.0.4.x |
| call-cc / chicken | 4.8.0.7 | 4.8.0.7.x |
| call-cc / chicken | 4.8.0-rc2 | 4.8.0-rc2.x |
| call-cc / chicken | - | 4.8.1.x |
| call-cc / chicken | 4.8.0.5 | 4.8.0.5.x |
| call-cc / chicken | 4.8.0-rc3 | 4.8.0-rc3.x |
- http://code.call-cc.org/cgi-bin/gitweb.cgi?p=chicken-core.git;a=blob;f=NEWS;h=c21c7cf9d1faf4f78736890ac7ca1d4b82d72ddd;hb=c6750af99ada7fa4815ee834e4e705bcfac9c137
- http://code.call-cc.org/cgi-bin/gitweb.cgi?p=chicken-core.git%3Ba=blob%3Bf=NEWS%3Bh=c21c7cf9d1faf4f78736890ac7ca1d4b82d72ddd%3Bhb=c6750af99ada7fa4815ee834e4e705bcfac9c137
- http://seclists.org/oss-sec/2013/q1/692
- http://www.osvdb.org/91520
- http://www.securityfocus.com/bid/58583
- https://exchange.xforce.ibmcloud.com/vulnerabilities/85065
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime