CVE-2007-4432

Name of the Vulnerable Software and Affected Versions SUSE Linux versions 10.1 and Enterprise 10

Description The issue is related to an untrusted search path vulnerability in wrapper scripts for certain programs, allowing local users to gain privileges. This can be achieved by modifying the LD LIBRARY PATH and MONO GAC PREFIX environment variables.

Recommendations For SUSE Linux versions 10.1 and Enterprise 10, consider restricting access to the wrapper scripts for the affected programs until a patch is available. As a temporary workaround, avoid using modified LD LIBRARY PATH and MONO GAC PREFIX environment variables to minimize the risk of exploitation.