tomboy code execution
news
/
advisories
/
forum
/
software
/
advertising
/
search
/
exploits
[EN]
securityvulns.ru
no-pyccku
tomboy code execution
Published:
09.03.2008
Source:
BUGTRAQ
SecurityVulns ID:
8764
Type:
local
Level:
5
/10
Description:
Invalid dynamic library path.
Affected:
TOMBOY
:
tomboy 0.6
CVE:
CVE-2005-4790
(Multiple untrusted search path vulnerabilities in SUSE Linux 9.3 and 10.0 cause the working directory to be added to LD_LIBRARY_PATH, which might allow local users to execute arbitrary code via (1) beagle, (2) tomboy, or (3) blam.)
Original document
MANDRIVA
,
[ MDVSA-2008:064 ] - Updated tomboy packages fix improper LD_LIBRARY_PATH handling
(
09.03.2008
)
Discuss:
Read or add your comments to this news (0 comments)
About
|
Terms of use
|
Privacy Policy
©
SecurityVulns
,
3APA3A
, Vladimir Dubrovin
Nizhny Novgorod
Enter your search terms
Web
securityvulns.com
Submit search form
