{"document":{"aggregate_severity":{"namespace":"https://www.suse.com/support/security/rating/","text":"critical"},"category":"csaf_vex","csaf_version":"2.0","distribution":{"text":"Copyright 2024 SUSE LLC. All rights reserved.","tlp":{"label":"WHITE","url":"https://www.first.org/tlp/"}},"lang":"en","notes":[{"category":"summary","text":"SUSE CVE-2007-4074","title":"Title"},{"category":"description","text":"The default configuration of Centre for Speech Technology Research (CSTR) Festival 1.95 beta (aka 2.0 beta) on Gentoo Linux, SUSE Linux, and possibly other distributions, is run locally with elevated privileges without requiring authentication, which allows local and remote attackers to execute arbitrary commands via the local daemon on port 1314, a different vulnerability than CVE-2001-0956.  NOTE: this issue is local in some environments, but remote on others.","title":"Description of the CVE"},{"category":"legal_disclaimer","text":"CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).","title":"Terms of use"}],"publisher":{"category":"vendor","contact_details":"https://www.suse.com/support/security/contact/","name":"SUSE Product Security Team","namespace":"https://www.suse.com/"},"references":[{"category":"external","summary":"CVE-2007-4074","url":"https://www.suse.com/security/cve/CVE-2007-4074"},{"category":"external","summary":"SUSE Security Ratings","url":"https://www.suse.com/support/security/rating/"},{"category":"external","summary":"SUSE Bug 294691 for CVE-2007-4074","url":"https://bugzilla.suse.com/294691"},{"category":"external","summary":"Advisory link for SUSE-SR:2007:021","url":"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/2WMGXSCCME5LI6C6JBUHBW6U5JTM7AMM/#2WMGXSCCME5LI6C6JBUHBW6U5JTM7AMM"}],"title":"SUSE CVE CVE-2007-4074","tracking":{"current_release_date":"2023-12-09T03:40:22Z","generator":{"date":"2023-02-15T06:11:16Z","engine":{"name":"cve-database.git:bin/generate-csaf-vex.pl","version":"1"}},"id":"CVE-2007-4074","initial_release_date":"2023-02-15T06:11:16Z","revision_history":[{"date":"2023-02-15T06:11:16Z","number":"2","summary":"Current version"},{"date":"2023-12-08T05:18:21Z","number":"3","summary":"Current version"},{"date":"2023-12-09T03:40:22Z","number":"4","summary":"Current version"}],"status":"interim","version":"4"}}}