Lucene search

Ubuntu.comUB:CVE-2010-4159

HistoryNov 17, 2010 - 12:00 a.m.

CVE-2010-4159

2010-11-1700:00:00

ubuntu.com

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.3%

JSON

Untrusted search path vulnerability in metadata/loader.c in Mono 2.8 and
earlier allows local users to gain privileges via a Trojan horse shared
library in the current working directory.

Bugs

OSVersionArchitecturePackageVersionFilename
ubuntu10.04noarchmono< 2.4.4~svn151842-1ubuntu4.1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	10.04	noarch	mono	< 2.4.4~svn151842-1ubuntu4.1	UNKNOWN

References

www.mono-project.com/Vulnerabilities#Mono_Runtime_Insecure_Native_Library_Loading

launchpad.net/bugs/cve/CVE-2010-4159

nvd.nist.gov/vuln/detail/CVE-2010-4159

security-tracker.debian.org/tracker/CVE-2010-4159

ubuntu.com/security/notices/USN-1517-1

www.cve.org/CVERecord?id=CVE-2010-4159

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.3%

JSON

Related for UB:CVE-2010-4159