[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2010-3847Date: (C)2011-01-07   (M)2023-12-22


elf/dl-load.c in ld.so in the GNU C Library (aka glibc or libc6) through 2.11.2, and 2.12.x through 2.12.1, does not properly handle a value of $ORIGIN for the LD_AUDIT environment variable, which allows local users to gain privileges via a crafted dynamic shared object (DSO) located in an arbitrary directory.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 6.9
Exploit Score: 3.4
Impact Score: 10.0
 
CVSS V2 Metrics:
Access Vector: LOCAL
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality: COMPLETE
Integrity: COMPLETE
Availability: COMPLETE
  
Reference:
http://seclists.org/fulldisclosure/2010/Oct/257
http://seclists.org/fulldisclosure/2010/Oct/292
http://seclists.org/fulldisclosure/2010/Oct/294
http://www.securityfocus.com/archive/1/515545/100/0/threaded
SECUNIA-42787
EXPLOIT-DB-44024
EXPLOIT-DB-44025
BID-44154
ADV-2011-0025
DSA-2122
GLSA-201011-01
MDVSA-2010:207
RHSA-2010:0787
RHSA-2010:0872
SUSE-SA:2010:052
USN-1009-1
VU#537223
http://sourceware.org/ml/libc-hacker/2010-10/msg00007.html
http://support.avaya.com/css/P8/documents/100120941
http://www.vmware.com/security/advisories/VMSA-2011-0001.html
https://bugzilla.redhat.com/show_bug.cgi?id=643306

CWE    1
CWE-59
OVAL    18
oval:org.secpod.oval:def:103261
oval:org.secpod.oval:def:201878
oval:org.secpod.oval:def:201826
oval:org.secpod.oval:def:103286
...

© SecPod Technologies