CVE-2014-1693 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2014-1693 Interim 1 11 2025-04-15T23:41:12Z current 2021-05-30T13:19:23Z 2025-04-15T23:41:12Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2014-1693 Multiple CRLF injection vulnerabilities in the FTP module in Erlang/OTP R15B03 allow context-dependent attackers to inject arbitrary FTP commands via CRLF sequences in the (1) user, (2) account, (3) cd, (4) ls, (5) nlist, (6) rename, (7) delete, (8) mkdir, (9) rmdir, (10) recv, (11) recv_bin, (12) recv_chunk_start, (13) send, (14) send_bin, (15) send_chunk_start, (16) append_chunk_start, (17) append, or (18) append_bin command. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.suse.com/pipermail/sle-security-updates/2014-May/000816.html E-Mail link for SUSE-SU-2014:0659-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Cloud 2.0 SUSE Cloud 4 SUSE Cloud 4 Dependencies SUSE OpenStack Cloud 3.0 erlang erlang-R14B-0.14.3 erlang-R14B-0.14.3 as a component of SUSE OpenStack Cloud 3.0 erlang as a component of SUSE Cloud 2.0 erlang as a component of SUSE Cloud 4 erlang as a component of SUSE Cloud 4 Dependencies Multiple CRLF injection vulnerabilities in the FTP module in Erlang/OTP R15B03 allow context-dependent attackers to inject arbitrary FTP commands via CRLF sequences in the (1) user, (2) account, (3) cd, (4) ls, (5) nlist, (6) rename, (7) delete, (8) mkdir, (9) rmdir, (10) recv, (11) recv_bin, (12) recv_chunk_start, (13) send, (14) send_bin, (15) send_chunk_start, (16) append_chunk_start, (17) append, or (18) append_bin command. CVE-2014-1693 SUSE OpenStack Cloud 3.0:erlang-R14B-0.14.3 important 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P