CVE-2011-0532

Name of the Vulnerable Software and Affected Versions 389 Directory Server versions 1.2.x

Description The issue concerns the backup and restore scripts, main initialization script, and ldap-agent script in 389 Directory Server. These scripts place a zero-length directory name in the LD LIBRARY PATH, allowing local users to gain privileges via a Trojan horse shared library in the current working directory.

Recommendations For versions 1.2.x, consider restricting access to the vulnerable scripts as a temporary workaround until a patch is available. Additionally, avoid using shared libraries in the current working directory to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.