CVE-2012-3381

Опубликовано: 06 июл. 2012

Источник: redhat

CVSS2: 3

EPSS Низкий

Описание

sfcb in sblim-sfcb places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory.

Отчет

Red Hat Product Security has rated this issue as having Low security impact. This issue is not currently planned to be addressed in future updates. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 6	sblim-sfcb	Will not fix

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low

https://bugzilla.redhat.com/show_bug.cgi?id=838160sblim-sfcb: insecure LD_LIBRARY_PATH usage

EPSS

Процентиль: 37%

0.00158

Низкий

3 Low

CVSS2

Связанные уязвимости

CVE-2012-3381

ubuntu

больше 13 лет назад

sfcb in sblim-sfcb places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory.

CVE-2012-3381

nvd

больше 13 лет назад

sfcb in sblim-sfcb places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory.

CVE-2012-3381

msrc

3 месяца назад

sfcb in sblim-sfcb places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory.

GHSA-mqhf-vfw3-qffg

github

больше 3 лет назад

sfcb in sblim-sfcb places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory.

EPSS

Процентиль: 37%

0.00158

Низкий

3 Low

CVSS2