CVE-2010-3353

Опубликовано: 20 окт. 2010

Источник: ubuntu

Приоритет: low

CVSS2: 6.9

Описание

Cowbell 0.2.7.1 places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory.

Релиз	Статус	Примечание
artful	ignored	end of life
bionic	not-affected	0.2.7.1-7
cosmic	not-affected	0.2.7.1-7
dapper	ignored	end of life
devel	not-affected	0.2.7.1-7
esm-apps/bionic	not-affected	0.2.7.1-7
esm-apps/xenial	not-affected	0.2.7.1-7
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was not-affected [0.2.7.1-7]]
hardy	ignored	end of life
jaunty	ignored	end of life

Показывать по

Ссылки на источники

https://www.cve.org/CVERecord?id=CVE-2010-3353

6.9 Medium

CVSS2

Связанные уязвимости

CVE-2010-3353

nvd

около 15 лет назад

Cowbell 0.2.7.1 places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory.

CVE-2010-3353

debian

около 15 лет назад

Cowbell 0.2.7.1 places a zero-length directory name in the LD_LIBRARY_ ...

GHSA-8vrr-cjgj-wp73

github

больше 3 лет назад

Cowbell 0.2.7.1 places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory.

6.9 Medium

CVSS2

CVE-2010-3353

Описание

Пакет cowbell

Ссылки на источники

Связанные уязвимости