PT-2012-4676 · Sblim · Sblim-Sfcb
Marcus Meissner
·
Published
2012-08-17
·
Updated
2012-08-17
·
CVE-2012-3381
CVSS v2.0
4.4
Medium
| Vector | AV:L/AC:M/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
sblim-sfcb (affected versions not specified)
Description
The issue allows local users to gain privileges via a Trojan horse shared library in the current working directory. This is due to sfcb in sblim-sfcb placing a zero-length directory name in the LD LIBRARY PATH.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Sblim-Sfcb