Back to search
CVE-2006-0646
Published: Feb 11, 2006
Modified: Aug 7, 2024
PUBLISHED
Description
ld in SUSE Linux 9.1 through 10.0, and SLES 9, in certain circumstances when linking binaries, can leave an empty RPATH or RUNPATH, which allows local attackers to execute arbitrary code as other users via by running an ld-linked application from the current directory, which could contain an attacker-controlled library file.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
16581
vdb-entry
x_refsource_BID
18811
third-party-advisory
x_refsource_SECUNIA
SUSE-SA:2006:007
vendor-advisory
x_refsource_SUSE
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now