PT-2007-1429 · Gnu · Libtool-Ltdl

Enrico Scholz

Published

2007-03-07

Updated

2018-10-16

CVE-2006-7151

CVSS v2.0

6.6

Medium

Vector

AV:L/AC:M/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions libtool-ltdl library version 1.5.22-2.3

Description The issue is related to an untrusted search path vulnerability in the libtool-ltdl library. This could potentially allow local users to execute arbitrary code by placing a malicious library in specific subdirectories, including hwcap, 0, and nosegneg.

Recommendations For libtool-ltdl library version 1.5.22-2.3, consider restricting access to the subdirectories hwcap, 0, and nosegneg to prevent malicious library execution until a patch is available.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2006-7151

Affected Products

Libtool-Ltdl

PT-2007-1429 · Gnu · Libtool-Ltdl

CVE-2006-7151

Related Identifiers

Affected Products

References · 5