CVE-2005-4790 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2005-4790
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2005-4790

Description: Multiple untrusted search path vulnerabilities in SUSE Linux 9.3 and 10.0, and possibly other distributions, cause the working directory to be added to LD_LIBRARY_PATH, which might allow local users to execute arbitrary code via (1) beagle, (2) tomboy, or (3) blam. NOTE: in August 2007, the tomboy vector was reported for other distributions.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/36054 UBUNTU http://www.ubuntulinux.org/support/documentation/usn/usn-560-1 SUSE http://www.novell.com/linux/security/advisories/2005_22_sr.html SAID Secunia Advisory: SA27799 Secunia Advisory: SA28339 Secunia Advisory: SA26480 Secunia Advisory: SA27608 Secunia Advisory: SA27621 Secunia Advisory: SA28672 OSVDB 39577 39578 MISC http://bugs.gentoo.org/show_bug.cgi?id=188806 MANDRIVA http://www.mandriva.com/security/advisories?name=MDVSA-2008:064 GENTOO http://security.gentoo.org/glsa/glsa-200711-12.xml http://security.gentoo.org/glsa/glsa-200801-14.xml FEDORA CONFIRM http://bugs.gentoo.org/show_bug.cgi?id=199841 http://bugs.gentoo.org/show_bug.cgi?id=189249 BID 25341

Return to the previous page.