Computer Security
[EN] securityvulns.ru no-pyccku


tomboy code execution
Published:09.03.2008
Source:
SecurityVulns ID:8764
Type:local
Threat Level:
5/10
Description:Invalid dynamic library path.
Affected:TOMBOY : tomboy 0.6
CVE:CVE-2005-4790 (Multiple untrusted search path vulnerabilities in SUSE Linux 9.3 and 10.0 cause the working directory to be added to LD_LIBRARY_PATH, which might allow local users to execute arbitrary code via (1) beagle, (2) tomboy, or (3) blam.)
Original documentdocumentMANDRIVA, [ MDVSA-2008:064 ] - Updated tomboy packages fix improper LD_LIBRARY_PATH handling (09.03.2008)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod