CVE-2014-1604

Name of the Vulnerable Software and Affected Versions RPLY versions prior to 0.7.1

Description The issue concerns the parser cache functionality in parsergenerator.py, which allows local users to spoof cache data. This can be achieved by pre-creating a temporary rply-*.json file with a predictable name.

Recommendations For versions prior to 0.7.1, update to version 0.7.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the parser cache functionality to minimize the risk of exploitation.