PT-2007-1429 · Gnu · Libtool-Ltdl

Enrico Scholz

Publicado

2007-03-07

Atualizado

2018-10-16

CVE-2006-7151

CVSS v2.0

6.6

Média

Vetor

AV:L/AC:M/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions libtool-ltdl library version 1.5.22-2.3

Description The issue is related to an untrusted search path vulnerability in the libtool-ltdl library. This could potentially allow local users to execute arbitrary code by placing a malicious library in specific subdirectories, including hwcap, 0, and nosegneg.

Recommendations For libtool-ltdl library version 1.5.22-2.3, consider restricting access to the subdirectories hwcap, 0, and nosegneg to prevent malicious library execution until a patch is available.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2006-7151

Produtos afetados

Libtool-Ltdl

PT-2007-1429 · Gnu · Libtool-Ltdl

CVE-2006-7151

Identificadores relacionados

Produtos afetados

Referências · 5