Cache Spoofing Vulnerability in RPLY (python-rply) Allows Local Users to Manipulate Data

Cache Spoofing Vulnerability in RPLY (python-rply) Allows Local Users to Manipulate Data

CVE-2014-1604 · LOW Severity

AV:L/AC:L/AU:N/C:N/I:P/A:N

The parser cache functionality in parsergenerator.py in RPLY (aka python-rply) before 0.7.1 allows local users to spoof cache data by pre-creating a temporary rply-*.json file with a predictable name.

Learn more about our User Device Pen Test.