Unrated severityNVD Advisory· Published Feb 8, 2014· Updated Apr 29, 2026
CVE-2014-0039
CVE-2014-0039
Description
Untrusted search path vulnerability in fwsnort before 1.6.4, when not running as root, allows local users to execute arbitrary code via a Trojan horse fwsnort.conf in the current working directory.
Affected products
25cpe:2.3:a:cipherdyne:fwsnort:*:*:*:*:*:*:*:*+ 24 more
- cpe:2.3:a:cipherdyne:fwsnort:*:*:*:*:*:*:*:*range: <=1.6.4
- cpe:2.3:a:cipherdyne:fwsnort:0.5:*:*:*:*:*:*:*
- cpe:2.3:a:cipherdyne:fwsnort:0.6:*:*:*:*:*:*:*
- cpe:2.3:a:cipherdyne:fwsnort:0.6.1:*:*:*:*:*:*:*
- cpe:2.3:a:cipherdyne:fwsnort:0.6.2:*:*:*:*:*:*:*
- cpe:2.3:a:cipherdyne:fwsnort:0.6.3:*:*:*:*:*:*:*
- cpe:2.3:a:cipherdyne:fwsnort:0.6.4:*:*:*:*:*:*:*
- cpe:2.3:a:cipherdyne:fwsnort:0.6.5:*:*:*:*:*:*:*
- cpe:2.3:a:cipherdyne:fwsnort:0.7.0:*:*:*:*:*:*:*
- cpe:2.3:a:cipherdyne:fwsnort:0.8.0:*:*:*:*:*:*:*
- cpe:2.3:a:cipherdyne:fwsnort:0.8.1:*:*:*:*:*:*:*
- cpe:2.3:a:cipherdyne:fwsnort:0.8.2:*:*:*:*:*:*:*
- cpe:2.3:a:cipherdyne:fwsnort:0.9.0:*:*:*:*:*:*:*
- cpe:2.3:a:cipherdyne:fwsnort:1.0:*:*:*:*:*:*:*
- cpe:2.3:a:cipherdyne:fwsnort:1.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:cipherdyne:fwsnort:1.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:cipherdyne:fwsnort:1.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:cipherdyne:fwsnort:1.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:cipherdyne:fwsnort:1.0.5:*:*:*:*:*:*:*
- cpe:2.3:a:cipherdyne:fwsnort:1.0.6:*:*:*:*:*:*:*
- cpe:2.3:a:cipherdyne:fwsnort:1.5:*:*:*:*:*:*:*
- cpe:2.3:a:cipherdyne:fwsnort:1.6:*:*:*:*:*:*:*
- cpe:2.3:a:cipherdyne:fwsnort:1.6.1:*:*:*:*:*:*:*
- cpe:2.3:a:cipherdyne:fwsnort:1.6.2:*:*:*:*:*:*:*
- cpe:2.3:a:cipherdyne:fwsnort:1.6.3:*:*:*:*:*:*:*
Patches
1fa977453120chttps://github.com/mrash/fwsnortvia nvd-ref
Vulnerability mechanics
Generated by null/stub on May 9, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.
References
7- github.com/mrash/fwsnort/commit/fa977453120cc48e1654f373311f9cac468d3348nvdExploitPatch
- lists.fedoraproject.org/pipermail/package-announce/2014-February/128188.htmlnvd
- lists.fedoraproject.org/pipermail/package-announce/2014-February/128205.htmlnvd
- osvdb.org/102822nvd
- seclists.org/oss-sec/2014/q1/221nvd
- www.securityfocus.com/bid/65341nvd
- github.com/mrash/fwsnort/blob/master/ChangeLognvd
News mentions
0No linked articles in our index yet.