2 matches found
UBUNTU-CVE-2010-3353
Cowbell 0.2.7.1 places a zero-length directory name in the LDLIBRARYPATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory...
CVE-2010-3353
Cowbell 0.2.7.1 is affected by CVE-2010-3353: it places a zero-length directory name in LD_LIBRARY_PATH, allowing local users to gain privileges via a Trojan horse shared library in the current working directory. Root cause: manipulation of LD_LIBRARY_PATH enabling control by the attacker’s direc...