CVE-2010-3362

Опубликовано: 20 окт. 2010

Источник: ubuntu

Приоритет: low

CVSS2: 6.9

Описание

lastfm 1.5.4 places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory.

Релиз	Статус	Примечание
dapper	DNE
devel	not-affected	1:1.5.4.26862+dfsg-5
hardy	ignored	end of life
jaunty	ignored	end of life
karmic	ignored	end of life
lucid	ignored	end of life
maverick	not-affected	1:1.5.4.26862+dfsg-5
natty	not-affected	1:1.5.4.26862+dfsg-5
oneiric	not-affected	1:1.5.4.26862+dfsg-5
precise	not-affected	1:1.5.4.26862+dfsg-5

Показывать по

Ссылки на источники

https://www.cve.org/CVERecord?id=CVE-2010-3362

6.9 Medium

CVSS2

Связанные уязвимости

CVE-2010-3362

nvd

около 15 лет назад

lastfm 1.5.4 places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory.

CVE-2010-3362

debian

около 15 лет назад

lastfm 1.5.4 places a zero-length directory name in the LD_LIBRARY_PAT ...

GHSA-xpp4-hqcj-ch86

github

больше 3 лет назад

lastfm 1.5.4 places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory.

6.9 Medium

CVSS2

CVE-2010-3362

Описание

Пакет lastfm

Ссылки на источники

Связанные уязвимости