CVE-2010-3389
CVE-2010-3389 affects the SAPDatabase and SAPInstance scripts in OCF Resource Agents (resource-agents) 1.0.3 used by Linux-HA. The vulnerability arises from placing a zero-length directory name in LD_LIBRARY_PATH, enabling a local attacker to load a Trojan horse shared library from the current wo...