{
  "modified": "2025-08-09T19:01:27Z",
  "published": "2014-02-08T00:55:06Z",
  "id": "CVE-2014-0039",
  "details": "Untrusted search path vulnerability in fwsnort before 1.6.4, when not running as root, allows local users to execute arbitrary code via a Trojan horse fwsnort.conf in the current working directory.",
  "references": [
    {
      "type": "EVIDENCE",
      "url": "https://github.com/mrash/fwsnort/commit/fa977453120cc48e1654f373311f9cac468d3348"
    },
    {
      "type": "FIX",
      "url": "https://github.com/mrash/fwsnort/commit/fa977453120cc48e1654f373311f9cac468d3348"
    },
    {
      "type": "WEB",
      "url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-February/128188.html"
    },
    {
      "type": "WEB",
      "url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-February/128205.html"
    },
    {
      "type": "WEB",
      "url": "http://osvdb.org/102822"
    },
    {
      "type": "WEB",
      "url": "http://seclists.org/oss-sec/2014/q1/221"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/65341"
    },
    {
      "type": "WEB",
      "url": "https://github.com/mrash/fwsnort/blob/master/ChangeLog"
    }
  ]
}