QwikSec

Security Database

CVE

CWE

Training

CVE-2010-3856

Published: Jan 7, 2011

Modified: Feb 13, 2025

PUBLISHED

Description

ld.so in the GNU C Library (aka glibc or libc6) before 2.11.3, and 2.12.x before 2.12.2, does not properly restrict use of the LD_AUDIT environment variable to reference dynamic shared objects (DSOs) as audit objects, which allows local users to gain privileges by leveraging an unsafe DSO located in a trusted library directory, as demonstrated by libpcprofile.so.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

20101022 The GNU C library dynamic linker will dlopen arbitrary DSOs during setuid loads.

mailing-list

x_refsource_FULLDISC

vdb-entry

x_refsource_BID

vendor-advisory

x_refsource_GENTOO

http://www.vmware.com/security/advisories/VMSA-2011-0001.html

x_refsource_CONFIRM

http://support.avaya.com/css/P8/documents/100121017

x_refsource_CONFIRM

https://bugzilla.redhat.com/show_bug.cgi?id=645672

x_refsource_CONFIRM

vendor-advisory

x_refsource_REDHAT

SUSE-SA:2010:052

vendor-advisory

x_refsource_SUSE

exploit

x_refsource_EXPLOIT-DB

vendor-advisory

x_refsource_DEBIAN

vendor-advisory

x_refsource_UBUNTU

[libc-hacker] 20101022 [PATCH] Require suid bit on audit objects in privileged programs

mailing-list

x_refsource_MLIST

20110105 VMSA-2011-0001 VMware ESX third party updates for Service Console packages glibc, sudo, and openldap

mailing-list

x_refsource_BUGTRAQ

vendor-advisory

x_refsource_MANDRIVA

third-party-advisory

x_refsource_SECUNIA

vdb-entry

x_refsource_VUPEN

vendor-advisory

x_refsource_REDHAT

20190612 SEC Consult SA-20190612-0 :: Multiple vulnerabilities in WAGO 852 Industrial Managed Switch Series

mailing-list

x_refsource_FULLDISC

20190613 SEC Consult SA-20190612-0 :: Multiple vulnerabilities in WAGO 852 Industrial Managed Switch Series

mailing-list

x_refsource_BUGTRAQ

http://packetstormsecurity.com/files/153278/WAGO-852-Industrial-Managed-Switch-Series-Code-Execution-Hardcoded-Credentials.html

x_refsource_MISC

http://www.openwall.com/lists/oss-security/2023/07/19/9

http://seclists.org/fulldisclosure/2023/Jul/31

http://www.openwall.com/lists/oss-security/2023/07/20/1

http://packetstormsecurity.com/files/173661/OpenSSH-Forwarded-SSH-Agent-Remote-Code-Execution.html

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.