Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-3580

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2005-3580
Last Modified 07 Mar 2011 09:26:48
Published 16 Nov 2005 02:42:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2005-3580

Summary

QDBM before 1.8.33-r2 allows local users in the portage group to increase privileges via a shared object in the Portage temporary build directory, which is added to the search path allowing objects in it to be loaded at runtime.

Vulnerable Systems

Application

  • Qdbm 1.8.13

  • Qdbm 1.8.14

  • Qdbm 1.8.15

  • Qdbm 1.8.16

  • Qdbm 1.8.17

  • Qdbm 1.8.21

  • Qdbm 1.8.24

  • Qdbm 1.8.30

  • Qdbm 1.8.31


References

GENTOO - GLSA-200511-02

SECUNIA - 17427

VUPEN - ADV-2005-2281

BID - 15120

OSVDB - 20527


Last Updated: 27 May 2016 10:40:58