CVE-2014-1845

NONE EPSS 28.3%
Published Apr 27, 20188y ago · Modified Jun 17, 20262w ago
Find Similar
Published Apr 27, 2018 8y ago
Last Modified Jun 17, 2026 2w ago

Description

An unspecified setuid root helper in Enlightenment before 0.17.6 allows local users to gain privileges by leveraging failure to properly sanitize the environment.

Threat Intelligence

EPSS Exploit Probability
28.3% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-264

Affected Products 1

VendorProductVersionRange
enlightenmentenlightenment* <0.17.6

References 5

  • openwall.com http://www.openwall.com/lists/oss-security/2014/02/03/19
    Mailing List
  • bugzilla.redhat.com https://bugzilla.redhat.com/show_bug.cgi?id=1059410
    Issue Tracking
  • exchange.xforce.ibmcloud.com https://exchange.xforce.ibmcloud.com/vulnerabilities/91216
    VDB Entry
  • git.enlightenment.org https://git.enlightenment.org/core/enlightenment.git/commit/?id=666df815cd86a50343859bce36c5cf968c5f38b0
    Patch
  • git.enlightenment.org https://git.enlightenment.org/core/enlightenment.git/commit/?id=bb4a21e98656fe2c7d98ba2163e6defe9a630e2b
    Patch

Remediation

  • git.enlightenment.org https://git.enlightenment.org/core/enlightenment.git/commit/?id=666df815cd86a50343859bce36c5cf968c5f38b0
    Patch
  • git.enlightenment.org https://git.enlightenment.org/core/enlightenment.git/commit/?id=bb4a21e98656fe2c7d98ba2163e6defe9a630e2b
    Patch