CVE-2007-4074 - The default configuration of Centre for Speech Technology Research (CSTR) Festival 1.95 beta (aka 2.

CVE-2007-4074

Summary

The default configuration of Centre for Speech Technology Research (CSTR) Festival 1.95 beta (aka 2.0 beta) on Gentoo Linux, SUSE Linux, and possibly other distributions, is run locally with elevated privileges without requiring authentication, which allows local and remote attackers to execute arbitrary commands via the local daemon on port 1314, a different vulnerability than CVE-2001-0956. NOTE: this issue is local in some environments, but remote on others.

References

Vulnerable Configurations

cpe:2.3:o:centre_for_speech_technology_research:gentoo_linux:festival_1.95_beta:*:*:*:*:*:*:*
cpe:2.3:o:centre_for_speech_technology_research:gentoo_linux:festival_1.95_beta:*:*:*:*:*:*:*
cpe:2.3:o:suse:suse_linux:*:*:*:*:*:*:*:*
cpe:2.3:o:suse:suse_linux:*:*:*:*:*:*:*:*

CVSS

Base:	10.0 (as of 15-10-2018 - 21:33)
Impact:
Exploitability:

CWE

CWE-16

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
COMPLETE	COMPLETE	COMPLETE

cvss-vector via4

AV:N/AC:L/Au:N/C:C/I:C/A:C

refmap via4

bid	25069
bugtraq	20080403 Medium security hole affecting Festival on Debian unstable/testing and Ubuntu Hardy Heron
confirm	http://bugs.gentoo.org/show_bug.cgi?id=170477
gentoo	GLSA-200707-10
secunia	26229 27271
suse	SUSE-SR:2007:021
xf	gentoo-festival-privilege-escalation(35606)

Last major update

15-10-2018 - 21:33

Published

30-07-2007 - 17:30

Last modified

15-10-2018 - 21:33