#VU35043 Buffer overflow in Chicken Scheme and Debian Linux - CVE-2014-6310
Published: November 22, 2019 / Updated: August 8, 2020
Vulnerability identifier: #VU35043
Vulnerability risk: High
CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber
CVE-ID: CVE-2014-6310
CWE-ID: CWE-120
Exploitation vector: Remote access
Exploit availability:
No public exploit available
Vulnerable software:
Chicken Scheme
Debian Linux
Chicken Scheme
Debian Linux
Software vendor:
call-cc.org
Debian
call-cc.org
Debian
Description
The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.
Buffer overflow in CHICKEN 4.9.0 and 4.9.0.1 may allow remote attackers to execute arbitrary code via the 'select' function.
Remediation
Install update from vendor's website.