Lucene search
MitreCVELIST:CVE-2010-3389HistoryOct 20, 2010 - 5:00 p.m.
CVE-2010-3389
2010-10-2017:00:00
mitre
www.cve.org
12
The (1) SAPDatabase and (2) SAPInstance scripts in OCF Resource Agents (aka resource-agents or cluster-agents) 1.0.3 in Linux-HA place a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory.
References
bugs.debian.org/cgi-bin/bugreport.cgi?bug=598549
secunia.com/advisories/43372
security.gentoo.org/glsa/glsa-201110-18.xml
www.redhat.com/support/errata/RHSA-2011-0264.html
www.redhat.com/support/errata/RHSA-2011-1000.html
www.redhat.com/support/errata/RHSA-2011-1580.html
www.vupen.com/english/advisories/2011/0416
bugzilla.redhat.com/show_bug.cgi?id=639044
Related
centos
centos
rgmanager security update
2011-09-01 16:12:13
openvas
openvas
CentOS Update for rgmanager CESA-2011:1000 centos5 i386
2011-09-23 00:00:00
CentOS Update for rgmanager CESA-2011:1000 centos5 i386
2011-09-23 00:00:00
Gentoo Security Advisory GLSA 201110-18 (rgmanager)
2012-02-12 00:00:00
redhat
redhat
(RHSA-2011:1000) Low: rgmanager security, bug fix, and enhancement update
2011-07-21 00:00:00
(RHSA-2011:0264) Low: rgmanager security and bug fix update
2011-02-16 00:00:00
nessus
nessus
Scientific Linux Security Update : rgmanager on SL5.x i386/x86_64
2012-08-01 00:00:00
Scientific Linux Security Update : resource-agents on SL6.x i386/x86_64
2012-08-01 00:00:00
RHEL 5 : rgmanager (RHSA-2011:1000)
2013-01-24 00:00:00
ubuntucve
ubuntucve
CVE-2010-3389
2010-10-20 00:00:00
gentoo
gentoo
rgmanager: Privilege escalation
2011-10-22 00:00:00
Multiple packages, Multiple vulnerabilities fixed in 2011
2014-12-11 00:00:00
veracode
veracode
Privilege Escalation
2020-04-10 00:59:15
cve
cve
CVE-2010-3389
2010-10-20 18:00:04
prion
prion
Directory traversal
2010-10-20 18:00:00
nvd
nvd
CVE-2010-3389
2010-10-20 18:00:04
oraclelinux
oraclelinux
rgmanager security, bug fix, and enhancement update
2011-07-31 00:00:00