2 matches found
CVE-2014-3391
Untrusted search path vulnerability in Cisco ASA Software 8.x before 8.43, 8.5, and 8.7 before 8.71.13 allows local users to gain privileges by placing a Trojan horse library file in external memory, leading to library use after device reload because of an incorrect LDLIBRARYPATH value, aka Bug I...
CVE-2014-3391
CVE-2014-3391 is a local privilege escalation in Cisco ASA Software caused by an untrusted LD_LIBRARY_PATH that enables a Trojan-horse library to be loaded from external memory, triggering a library load after reload. Affected products are Cisco ASA Software 8.x, specifically before 8.4(3), 8.5, ...