CVE-2005-0627

Name of the Vulnerable Software and Affected Versions Qt versions prior to 3.3.4

Description The issue allows local users to execute arbitrary programs due to Qt searching the BUILD PREFIX directory, which could be world-writable, to load shared libraries regardless of the LD LIBRARY PATH environment variable. This could lead to a violation of confidentiality, integrity, and availability of protected information. The exploitation of this issue can be performed locally.

Recommendations For Qt versions prior to 3.3.4, update to version 3.3.4 or later to resolve the issue. As a temporary workaround, consider restricting access to the BUILD PREFIX directory to minimize the risk of exploitation.