Secunia
Login
|
|
CVE Reference: CVE-2010-4236 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2010-4236 |
|
|
Description: Untrusted search path vulnerability in estaskwrapper in IBM OmniFind Enterprise Edition before 9.1 allows local users to gain privileges via an ES_LIBRARY_PATH environment variable and a modified PATH environment variable, which is used during execution of the estasklight program, a different vulnerability than CVE-2010-3895. |
|
|
CVE Status: Candidate |
|
|
References: MISC http://security.fatihkilic.de/advisory/fkilic-sa-2010-ibm-omnifind.txt EXPLOIT-DB http://www.exploit-db.com/exploits/15475 BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/514688/100/0/threaded BID 44740 |
|
| Return to the previous page. |
