3 matches found
FreeBSD Security Advisory FreeBSD-SA-09:16.rtld
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-09:16.rtld Security Advisory The FreeBSD Project Topic: Improper environment sanitization in rtld1 Category: core Module: rtld Announced: 2009-12-03 Affects:...
CVE-2009-4147
CVE-2009-4147 affects FreeBSD rtld (libexec/rtld-elf/rtld.c) on FreeBSD 7.1, 7.2 and 8.0. The rtld function fails to clear LD * environment variables, allowing a local user to exploit a modified search path to load a Trojan library and escalate privileges (e.g., through setuid/setgid programs). R...
CVE-2009-4147
creationtimestamp| type| source ---|---|--- 2009-11-30 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/10255 2019-05-20 18:21:12+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/freebsd/local/rtldexeclprivesc.rb 2025-02-06 03:13:39+00:00| see...