Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2009-0415HistoryOct 03, 2022 - 4:24 p.m.
CVE-2009-0415
2022-10-0316:24:10
Debian Security Bug Tracker
security-tracker.debian.org
7
trickle 1.07
search path
arbitrary code
trojan horse
ld_preload
unix
3.7 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:H/Au:N/C:P/I:P/A:P
0.0004 Low
EPSS
Percentile
5.1%
Untrusted search path vulnerability in trickle 1.07 allows local users to execute arbitrary code via a Trojan horse trickle-overload.so in the current working directory, which is referenced in the LD_PRELOAD path.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | trickle | < 1.07-6 | trickle_1.07-6_all.deb |
| Debian | 11 | all | trickle | < 1.07-6 | trickle_1.07-6_all.deb |
| Debian | 999 | all | trickle | < 1.07-6 | trickle_1.07-6_all.deb |
| Debian | 13 | all | trickle | < 1.07-6 | trickle_1.07-6_all.deb |
Related
openvas
openvas
Fedora Core 10 FEDORA-2009-1694 (trickle)
2009-03-02 00:00:00
Fedora Core 10 FEDORA-2009-1694 (trickle)
2009-03-02 00:00:00
Fedora Core 9 FEDORA-2009-1675 (trickle)
2009-03-02 00:00:00
prion
prion
Path traversal
2009-02-03 23:30:00
cve
cve
CVE-2009-0415
2022-10-03 16:24:10
cvelist
cvelist
CVE-2009-0415
2022-10-03 16:24:10
nessus
nessus
Fedora 9 : trickle-1.07-7.fc9 (2009-1675)
2009-02-25 00:00:00
Fedora 10 : trickle-1.07-7.fc10 (2009-1694)
2009-04-23 00:00:00
fedora
fedora
[SECURITY] Fedora 9 Update: trickle-1.07-7.fc9
2009-02-24 20:43:52
[SECURITY] Fedora 10 Update: trickle-1.07-7.fc10
2009-02-24 21:00:07
ubuntucve
ubuntucve
CVE-2009-0415
2009-02-03 00:00:00
nvd
nvd
CVE-2009-0415
2009-02-03 23:30:01
3.7 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:H/Au:N/C:P/I:P/A:P
0.0004 Low
EPSS
Percentile
5.1%
Related for DEBIANCVE:CVE-2009-0415