Back to search
CVE-2008-1951
Published: Jun 25, 2008
Modified: Aug 7, 2024
PUBLISHED
Description
Untrusted search path vulnerability in a certain Red Hat build script for Standards Based Linux Instrumentation for Manageability (sblim) libraries before 1-13a.el4_6.1 in Red Hat Enterprise Linux (RHEL) 4, and before 1-31.el5_2.1 in RHEL 5, allows local users to gain privileges via a malicious library in a certain subdirectory of /var/tmp, related to an incorrect RPATH setting, as demonstrated by a malicious libc.so library for tog-pegasus.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
30803
third-party-advisory
x_refsource_SECUNIA
oval:org.mitre.oval:def:9635
vdb-entry
signature
x_refsource_OVAL
redhat-sblim-privilege-escalation(43315)
vdb-entry
x_refsource_XF
RHSA-2008:0497
vendor-advisory
x_refsource_REDHAT
1020354
vdb-entry
x_refsource_SECTRACK
29913
vdb-entry
x_refsource_BID
https://bugzilla.redhat.com/show_bug.cgi?id=447705
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now