SecPod SCAP Repo, a repository of SCAP Content (CVE, CCE, CPE, CWE, OVAL and XCCDF)

[Forgot Password]

Paid content will be excluded from the download.

Download | Alert*

CVE

CVE-2010-3856

Date: (C)2011-01-07 (M)2024-04-19

ld.so in the GNU C Library (aka glibc or libc6) before 2.11.3, and 2.12.x before 2.12.2, does not properly restrict use of the LD_AUDIT environment variable to reference dynamic shared objects (DSOs) as audit objects, which allows local users to gain privileges by leveraging an unsafe DSO located in a trusted library directory, as demonstrated by libpcprofile.so.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 7.2
Exploit Score: 3.9
Impact Score: 10.0

CVSS V2 Metrics:
Access Vector: LOCAL
Access Complexity: LOW
Authentication: NONE
Confidentiality: COMPLETE
Integrity: COMPLETE
Availability: COMPLETE

Reference:

http://seclists.org/fulldisclosure/2010/Oct/344

http://www.securityfocus.com/archive/1/515545/100/0/threaded

http://seclists.org/fulldisclosure/2019/Jun/18

https://seclists.org/bugtraq/2019/Jun/14

EXPLOIT-DB-44025

SUSE-SA:2010:052

http://sourceware.org/ml/libc-hacker/2010-10/msg00010.html

http://packetstormsecurity.com/files/153278/WAGO-852-Industrial-Managed-Switch-Series-Code-Execution-Hardcoded-Credentials.html

http://packetstormsecurity.com/files/173661/OpenSSH-Forwarded-SSH-Agent-Remote-Code-Execution.html

http://seclists.org/fulldisclosure/2023/Jul/31

http://support.avaya.com/css/P8/documents/100121017

http://www.openwall.com/lists/oss-security/2023/07/19/9

http://www.openwall.com/lists/oss-security/2023/07/20/1

http://www.vmware.com/security/advisories/VMSA-2011-0001.html

https://bugzilla.redhat.com/show_bug.cgi?id=645672

oval:org.secpod.oval:def:700088
oval:org.secpod.oval:def:600023
oval:org.secpod.oval:def:201801
oval:org.secpod.oval:def:600195
...

© SecPod Technologies