Описание
The vips-7.22 script in VIPS 7.22.2 places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory.
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:vips:vips:7.22.2:*:*:*:*:*:*:*
EPSS
Процентиль: 35%
0.00143
Низкий
6.9 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
ubuntu
около 15 лет назад
The vips-7.22 script in VIPS 7.22.2 places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory.
debian
около 15 лет назад
The vips-7.22 script in VIPS 7.22.2 places a zero-length directory nam ...
github
больше 3 лет назад
The vips-7.22 script in VIPS 7.22.2 places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory.
EPSS
Процентиль: 35%
0.00143
Низкий
6.9 Medium
CVSS2
Дефекты
NVD-CWE-Other