Date published: 2014-02-26T09:55:08.567-05:00
Date last modified: 2014-03-11T12:55:02.173-04:00
CVSS Score: 4.6
Principal attack vector: LOCAL
Reference URL: http://openwall.com/lists/oss-security/2014/02/25/2
Summary: Untrusted search path vulnerability in Catfish through 0.4.0.3, when a Fedora package such as 0.4.0.2-2 is not used, allows local users to gain privileges via a Trojan horse catfish.pyc in the current working directory.