PT-2010-4772 · Qt · Qt Creator

Published

2010-10-04

Updated

2010-10-05

CVE-2010-3374

CVSS v2.0

6.9

Medium

Vector

AV:L/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Qt Creator versions prior to 2.0.1

Description The issue allows local users to gain privileges via a Trojan horse shared library in the current working directory. This is due to Qt Creator placing a zero-length directory name in the LD LIBRARY PATH.

Recommendations For Qt Creator versions prior to 2.0.1, update to version 2.0.1 or later to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2010-3374

Affected Products

Qt Creator

PT-2010-4772 · Qt · Qt Creator

CVE-2010-3374

Related Identifiers

Affected Products

References · 10