Lucene search
MitreCVE-2010-3372HistoryDec 08, 2010 - 6:00 p.m.
CVE-2010-3372
2010-12-0818:00:04
mitre
web.nvd.nist.gov
22
cve-2010-3372
nordugrid
arc
vulnerability
ld_library_path
local users
privileges
CVSS2
6.9
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
AI Score
6.6
Confidence
Low
EPSS
0
Percentile
5.1%
Untrusted search path vulnerability in NorduGrid Advanced Resource Connector (ARC) before 0.8.3 allows local users to gain privileges via vectors related to the LD_LIBRARY_PATH environment variable. NOTE: some of these details are obtained from third party information.
Affected configurations
Node
nordugridnordugrid-arcRange≤0.8.2
ORnordugridnordugrid-arcMatch0.3.22
ORnordugridnordugrid-arcMatch0.3.23
ORnordugridnordugrid-arcMatch0.3.24
ORnordugridnordugrid-arcMatch0.3.25
ORnordugridnordugrid-arcMatch0.3.26
ORnordugridnordugrid-arcMatch0.3.27
ORnordugridnordugrid-arcMatch0.3.28
ORnordugridnordugrid-arcMatch0.3.29
ORnordugridnordugrid-arcMatch0.3.30
ORnordugridnordugrid-arcMatch0.3.31
ORnordugridnordugrid-arcMatch0.3.32
ORnordugridnordugrid-arcMatch0.3.33
ORnordugridnordugrid-arcMatch0.3.34
ORnordugridnordugrid-arcMatch0.3.35
ORnordugridnordugrid-arcMatch0.3.36
ORnordugridnordugrid-arcMatch0.3.37
ORnordugridnordugrid-arcMatch0.3.38
ORnordugridnordugrid-arcMatch0.3.39
ORnordugridnordugrid-arcMatch0.3.40
ORnordugridnordugrid-arcMatch0.4.0
ORnordugridnordugrid-arcMatch0.4.1
ORnordugridnordugrid-arcMatch0.4.2
ORnordugridnordugrid-arcMatch0.4.3
ORnordugridnordugrid-arcMatch0.4.4
ORnordugridnordugrid-arcMatch0.4.5
ORnordugridnordugrid-arcMatch0.5.0
ORnordugridnordugrid-arcMatch0.5.1
ORnordugridnordugrid-arcMatch0.5.2
ORnordugridnordugrid-arcMatch0.5.3
ORnordugridnordugrid-arcMatch0.5.4
ORnordugridnordugrid-arcMatch0.5.5
ORnordugridnordugrid-arcMatch0.5.6
ORnordugridnordugrid-arcMatch0.5.7
ORnordugridnordugrid-arcMatch0.5.8
ORnordugridnordugrid-arcMatch0.5.9
ORnordugridnordugrid-arcMatch0.5.10
ORnordugridnordugrid-arcMatch0.5.11
ORnordugridnordugrid-arcMatch0.5.12
ORnordugridnordugrid-arcMatch0.5.13
ORnordugridnordugrid-arcMatch0.5.14
ORnordugridnordugrid-arcMatch0.5.15
ORnordugridnordugrid-arcMatch0.5.16
ORnordugridnordugrid-arcMatch0.5.17
ORnordugridnordugrid-arcMatch0.5.18
ORnordugridnordugrid-arcMatch0.5.19
ORnordugridnordugrid-arcMatch0.5.20
ORnordugridnordugrid-arcMatch0.5.21
ORnordugridnordugrid-arcMatch0.5.22
ORnordugridnordugrid-arcMatch0.5.23
ORnordugridnordugrid-arcMatch0.5.24
ORnordugridnordugrid-arcMatch0.5.25
ORnordugridnordugrid-arcMatch0.5.26
ORnordugridnordugrid-arcMatch0.5.27
ORnordugridnordugrid-arcMatch0.5.28
ORnordugridnordugrid-arcMatch0.5.29
ORnordugridnordugrid-arcMatch0.5.30
ORnordugridnordugrid-arcMatch0.5.31
ORnordugridnordugrid-arcMatch0.5.32
ORnordugridnordugrid-arcMatch0.5.33
ORnordugridnordugrid-arcMatch0.5.34
ORnordugridnordugrid-arcMatch0.5.35
ORnordugridnordugrid-arcMatch0.5.36
ORnordugridnordugrid-arcMatch0.5.37
ORnordugridnordugrid-arcMatch0.5.38
ORnordugridnordugrid-arcMatch0.5.39
ORnordugridnordugrid-arcMatch0.5.40
ORnordugridnordugrid-arcMatch0.5.41
ORnordugridnordugrid-arcMatch0.5.42
ORnordugridnordugrid-arcMatch0.5.43
ORnordugridnordugrid-arcMatch0.5.44
ORnordugridnordugrid-arcMatch0.5.45
ORnordugridnordugrid-arcMatch0.5.46
ORnordugridnordugrid-arcMatch0.5.47
ORnordugridnordugrid-arcMatch0.5.48
ORnordugridnordugrid-arcMatch0.5.49
ORnordugridnordugrid-arcMatch0.5.50
ORnordugridnordugrid-arcMatch0.5.51
ORnordugridnordugrid-arcMatch0.5.52
ORnordugridnordugrid-arcMatch0.5.53
ORnordugridnordugrid-arcMatch0.5.54
ORnordugridnordugrid-arcMatch0.5.55
ORnordugridnordugrid-arcMatch0.5.56
ORnordugridnordugrid-arcMatch0.5.57
ORnordugridnordugrid-arcMatch0.5.58
ORnordugridnordugrid-arcMatch0.6.0
ORnordugridnordugrid-arcMatch0.6.1
ORnordugridnordugrid-arcMatch0.6.2
ORnordugridnordugrid-arcMatch0.6.3
ORnordugridnordugrid-arcMatch0.6.4
ORnordugridnordugrid-arcMatch0.6.5
ORnordugridnordugrid-arcMatch0.8.1
ORnordugridnordugrid-arcMatch0.8.1.1
ORnordugridnordugrid-arcMatch0.8.1.1-1
ORnordugridnordugrid-arcMatch0.8.1.1-2
ORnordugridnordugrid-arcMatch0.8.2.1
ORnordugridnordugrid-arcMatch0.8.2.2
| Vendor | Product | Version | CPE |
|---|---|---|---|
| nordugrid | nordugrid-arc | * | cpe:2.3:a:nordugrid:nordugrid-arc:*:*:*:*:*:*:*:* |
| nordugrid | nordugrid-arc | 0.3.22 | cpe:2.3:a:nordugrid:nordugrid-arc:0.3.22:*:*:*:*:*:*:* |
| nordugrid | nordugrid-arc | 0.3.23 | cpe:2.3:a:nordugrid:nordugrid-arc:0.3.23:*:*:*:*:*:*:* |
| nordugrid | nordugrid-arc | 0.3.24 | cpe:2.3:a:nordugrid:nordugrid-arc:0.3.24:*:*:*:*:*:*:* |
| nordugrid | nordugrid-arc | 0.3.25 | cpe:2.3:a:nordugrid:nordugrid-arc:0.3.25:*:*:*:*:*:*:* |
| nordugrid | nordugrid-arc | 0.3.26 | cpe:2.3:a:nordugrid:nordugrid-arc:0.3.26:*:*:*:*:*:*:* |
| nordugrid | nordugrid-arc | 0.3.27 | cpe:2.3:a:nordugrid:nordugrid-arc:0.3.27:*:*:*:*:*:*:* |
| nordugrid | nordugrid-arc | 0.3.28 | cpe:2.3:a:nordugrid:nordugrid-arc:0.3.28:*:*:*:*:*:*:* |
| nordugrid | nordugrid-arc | 0.3.29 | cpe:2.3:a:nordugrid:nordugrid-arc:0.3.29:*:*:*:*:*:*:* |
| nordugrid | nordugrid-arc | 0.3.30 | cpe:2.3:a:nordugrid:nordugrid-arc:0.3.30:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2010-3372
2010-12-08 17:00:00
nvd
nvd
CVE-2010-3372
2010-12-08 18:00:04
prion
prion
Design/Logic Flaw
2010-12-08 18:00:00
ubuntucve
ubuntucve
CVE-2010-3372
2010-12-08 00:00:00
CVSS2
6.9
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
AI Score
6.6
Confidence
Low
EPSS
0
Percentile
5.1%
Related for CVE-2010-3372