Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2010-3369

Опубликовано: 20 окт. 2010
Источник: nvd
CVSS2: 6.9
EPSS Низкий

Описание

The (1) mdb and (2) mdb-symbolreader scripts in mono-debugger 2.4.3, and other versions before 2.8.1, place a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:debian:mono-debugger:2.4.3:*:*:*:*:*:*:*
cpe:2.3:a:debian:mono-debugger:2.6:*:*:*:*:*:*:*
cpe:2.3:a:debian:mono-debugger:2.6.1:*:*:*:*:*:*:*
cpe:2.3:a:debian:mono-debugger:2.6.3:*:*:*:*:*:*:*
cpe:2.3:a:debian:mono-debugger:2.6.4:*:*:*:*:*:*:*
cpe:2.3:a:debian:mono-debugger:2.6.7:*:*:*:*:*:*:*
cpe:2.3:a:debian:mono-debugger:2.8:*:*:*:*:*:*:*

EPSS

Процентиль: 14%
0.00045
Низкий

6.9 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

ubuntu логотип

CVE-2010-3369

ubuntu
около 15 лет назад

The (1) mdb and (2) mdb-symbolreader scripts in mono-debugger 2.4.3, and other versions before 2.8.1, place a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory.

debian логотип

CVE-2010-3369

debian
около 15 лет назад

The (1) mdb and (2) mdb-symbolreader scripts in mono-debugger 2.4.3, a ...

github логотип

GHSA-r885-5jm5-57hg

github
больше 3 лет назад

The (1) mdb and (2) mdb-symbolreader scripts in mono-debugger 2.4.3, and other versions before 2.8.1, place a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory.

EPSS

Процентиль: 14%
0.00045
Низкий

6.9 Medium

CVSS2

Дефекты

NVD-CWE-Other