Untrusted Search Path Vulnerability in Catfish through 0.4.0.3

CVE-2014-2094 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

Untrusted search path vulnerability in Catfish through 0.4.0.3, when a Fedora package such as 0.4.0.2-2 is not used, allows local users to gain privileges via a Trojan horse catfish.pyc in the current working directory.

Learn more about our Cis Benchmark Audit For Fedora Family Linux.