Mandriva Linux Security Advisory : banshee (MDVSA-2011:034)

A vulnerability has been found and corrected in banshee : The 1 banshee-1 and 2 muinshee scripts in Banshee 1.8.0 and earlier place a zero-length directory name in the LDLIBRARYPATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory...