Computer Security
[EN] securityvulns.ru no-pyccku


couchdb code execution
Published:12.09.2010
Source:
SecurityVulns ID:11133
Type:local
Threat Level:
5/10
Description:Ralative path for dynamic library loading.
Affected:COUCHDB : CouchDB 0.11
CVE:CVE-2010-2953 (Untrusted search path vulnerability in a certain Debian GNU/Linux patch for the couchdb script in CouchDB 0.8.0 allows local users to gain privileges via a crafted shared library in the current working directory.)
Original documentdocumentDEBIAN, [SECURITY] [DSA 2107-1] New couchdb package fixes arbitrary code execution (12.09.2010)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod