SecuritySpace - CVE-2014-2906

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2014-2906

Description: The psub function in fish (aka fish-shell) 1.16.0 before 2.1.1 does not properly create temporary files, which allows local users to execute arbitrary commands via a temporary file with a predictable name.

Test IDs: None available

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2014-2906
http://www.openwall.com/lists/oss-security/2014/04/28/4
https://github.com/fish-shell/fish-shell/issues/1437

CVE ID:	CVE-2014-2906
Description:	The psub function in fish (aka fish-shell) 1.16.0 before 2.1.1 does not properly create temporary files, which allows local users to execute arbitrary commands via a temporary file with a predictable name.
Test IDs:	None available
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2014-2906 http://www.openwall.com/lists/oss-security/2014/04/28/4 https://github.com/fish-shell/fish-shell/issues/1437