CVE-2009-0415

Name of the Vulnerable Software and Affected Versions trickle version 1.07

Description The issue allows local users to execute arbitrary code via a Trojan horse trickle-overload.so in the current working directory, which is referenced in the LD PRELOAD path. This is due to an untrusted search path vulnerability.

Recommendations For trickle version 1.07, consider restricting access to the LD PRELOAD path to prevent exploitation until a patch is available. As a temporary workaround, avoid using the LD PRELOAD path in sensitive environments. At the moment, there is no information about a newer version that contains a fix for this vulnerability.