CVE-2006-6165

Name of the Vulnerable Software and Affected Versions ld.so in FreeBSD, NetBSD, and possibly other BSD distributions (affected versions not specified)

Description The issue allows local users to gain privileges by passing certain environment variables to loading processes, as ld.so does not remove harmful environment variables. A third party has disputed this issue, stating that it is the responsibility of the application to properly sanitize the environment.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.