Lucene search
+L

74 matches found

NVD
NVD
added 2006/03/31 11:6 a.m.18 views

CVE-2006-1565

Untrusted search path vulnerability in libgpib-perl 3.2.06-2 in Debian GNU/Linux includes an RPATH value under the /tmp/buildd directory for the LinuxGpib.so module, which might allow local users to gain privileges by installing malicious libraries in that directory...

4.6CVSS6.6AI score0.00483EPSS
Exploits1References3
Prion
Prion
added 2006/03/31 11:6 a.m.16 views

Design/Logic Flaw

Untrusted search path vulnerability in libtunepimp-perl 0.4.2-1 in Debian GNU/Linux includes an RPATH value under the /tmp/buildd directory for the tunepimp.so module, which might allow local users to gain privileges by installing malicious libraries in that directory...

4.6CVSS6.8AI score0.00489EPSS
Exploits1References3Affected Software1
NVD
NVD
added 2006/03/31 11:6 a.m.14 views

CVE-2006-1566

Untrusted search path vulnerability in libtunepimp-perl 0.4.2-1 in Debian GNU/Linux includes an RPATH value under the /tmp/buildd directory for the tunepimp.so module, which might allow local users to gain privileges by installing malicious libraries in that directory...

4.6CVSS6.6AI score0.00489EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2006/03/31 11:6 a.m.27 views

CVE-2006-1566

Untrusted search path vulnerability in libtunepimp-perl 0.4.2-1 in Debian GNU/Linux includes an RPATH value under the /tmp/buildd directory for the tunepimp.so module, which might allow local users to gain privileges by installing malicious libraries in that directory...

4.6CVSS5.9AI score0.00489EPSS
Exploits1References1
Cvelist
Cvelist
added 2006/03/31 11:0 a.m.22 views

CVE-2006-1566

Untrusted search path vulnerability in libtunepimp-perl 0.4.2-1 in Debian GNU/Linux includes an RPATH value under the /tmp/buildd directory for the tunepimp.so module, which might allow local users to gain privileges by installing malicious libraries in that directory...

6.6AI score0.00489EPSS
Exploits1References3
Cvelist
Cvelist
added 2006/03/31 11:0 a.m.19 views

CVE-2006-1565

Untrusted search path vulnerability in libgpib-perl 3.2.06-2 in Debian GNU/Linux includes an RPATH value under the /tmp/buildd directory for the LinuxGpib.so module, which might allow local users to gain privileges by installing malicious libraries in that directory...

6.6AI score0.00483EPSS
Exploits1References3
Cvelist
Cvelist
added 2006/03/31 11:0 a.m.23 views

CVE-2006-1564

Untrusted search path vulnerability in libapache2-svn 1.3.0-4 for Subversion in Debian GNU/Linux includes RPATH values under the /tmp/svn directory for the 1 modauthzsvn.so and 2 moddavsvn.so modules, which might allow local users to gain privileges by installing malicious libraries in that...

6.5AI score0.00478EPSS
Exploits1References3
Debian CVE
Debian CVE
added 2006/03/31 11:0 a.m.26 views

CVE-2006-1564

Untrusted search path vulnerability in libapache2-svn 1.3.0-4 for Subversion in Debian GNU/Linux includes RPATH values under the /tmp/svn directory for the 1 modauthzsvn.so and 2 moddavsvn.so modules, which might allow local users to gain privileges by installing malicious libraries in that...

4.6CVSS5.3AI score0.00478EPSS
Exploits1
CVE
CVE
added 2006/03/31 11:0 a.m.54 views

CVE-2006-1564

The CVE-2006-1564 entry concerns libapache2-svn 1.3.0-4 for Subversion on Debian GNU/Linux. The vulnerability stems from untrusted search paths due to RPATH values under /tmp/svn for the (1) mod_authz_svn.so and (2) mod_dav_svn.so modules, potentially allowing local users to gain privileges by pl...

4.6CVSS6.5AI score0.00478EPSS
Exploits1References3Affected Software1
NVD
NVD
added 2004/01/29 5:0 a.m.11 views

CVE-2004-2133

Certain third-party packages for CVSup 16.1h, such as SuSE Linux, contain untrusted paths in the ELF RPATH fields of certain executables, which could allow local users to execute arbitrary code by causing cvsup to link against malicious libraries that are created in world-writable directories suc...

4.6CVSS7.3AI score0.00607EPSS
Exploits1References4
NVD
NVD
added 2003/08/07 4:0 a.m.18 views

CVE-2003-0449

Progress Database 9.1 to 9.1D06 trusts user input to find and load libraries using dlopen, which allows local users to gain privileges via 1 a PATH environment variable that points to malicious libraries, as demonstrated using libjutil.so inproapsv, or 2 the -installdir command line parameter, as...

4.6CVSS6.7AI score0.01489EPSS
Exploits1References4
Cvelist
Cvelist
added 2003/06/20 4:0 a.m.21 views

CVE-2003-0449

Progress Database 9.1 to 9.1D06 trusts user input to find and load libraries using dlopen, which allows local users to gain privileges via 1 a PATH environment variable that points to malicious libraries, as demonstrated using libjutil.so inproapsv, or 2 the -installdir command line parameter, as...

6.7AI score0.01489EPSS
Exploits1References4
CERT
CERT
added 2001/08/21 12:0 a.m.34 views

Aladdin Ghostscript LD_RUN_PATH environment variable allows libraries to be loaded from current directory

Overview Alladin Ghostscript, a previewer for postscript files, uses an insecure value for the LDRUNPATH environment variable. This allows attackers to supply malicious libraries to be loaded from the current directory. Description Alladin Ghostscript is a previewer for postscript files. In...

4.6CVSS7.1AI score0.00405EPSS
Exploits0References8
CERT
CERT
added 2001/05/17 12:0 a.m.53 views

ld.so fails to unset LD_PRELOAD before executing suid root programs

Overview ld.so fails to unset LDPRELOAD before executing suid root programs, allowing loading of insecure or malicious libraries. Description ld.so, the UNIX/LINUX dynamic loader, fails in some conditions and some operating system releases to unset LDPRELOAD before loading suid root programs for...

7.2CVSS6.9AI score0.01232EPSS
Exploits1References1
Rows per page
Query Builder