CVE-2009-3736
Published Nov 29, 2009
Last updated 7 years ago
Overview
- Description
- ltdl.c in libltdl in GNU Libtool 1.5.x, and 2.2.6 before 2.2.6b, as used in Ham Radio Control Libraries, Q, and possibly other products, attempts to open a .la file in the current working directory, which allows local users to gain privileges via a Trojan horse file.
- Source
- cret@cert.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 6.9
- Impact score
- 10
- Exploitability score
- 3.4
- Vector string
- AV:L/AC:M/Au:N/C:C/I:C/A:C
Weaknesses
- nvd@nist.gov
- NVD-CWE-Other
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:gnu:libtool:1.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0418D690-1347-49A7-9962-BA70DA7858E7"
},
{
"criteria": "cpe:2.3:a:gnu:libtool:1.5.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8C580E0A-701E-4AB9-8B28-A56FC5BFF389"
},
{
"criteria": "cpe:2.3:a:gnu:libtool:1.5.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "70A39F0F-45B0-49D9-8793-D73FD0E86829"
},
{
"criteria": "cpe:2.3:a:gnu:libtool:1.5.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5BE3BBE7-28DD-47EF-9342-BFE9F5083653"
},
{
"criteria": "cpe:2.3:a:gnu:libtool:1.5.8:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5E95FAA6-739A-4E5E-AB22-8626B77E54EF"
},
{
"criteria": "cpe:2.3:a:gnu:libtool:1.5.10:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "ABF88238-E786-4F8E-8101-ACD0264D0AA2"
},
{
"criteria": "cpe:2.3:a:gnu:libtool:1.5.12:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4F4EFADC-D576-4A2F-B41D-8786721B89DD"
},
{
"criteria": "cpe:2.3:a:gnu:libtool:1.5.14:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "749BF2C8-250D-4416-A037-2D0F74C209C4"
},
{
"criteria": "cpe:2.3:a:gnu:libtool:1.5.16:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5DF254A6-7175-4D61-82E7-82FAD2BA6787"
},
{
"criteria": "cpe:2.3:a:gnu:libtool:1.5.18:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "93146915-94E2-402A-87FC-F4BEEDB5DEEB"
},
{
"criteria": "cpe:2.3:a:gnu:libtool:1.5.20:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3D960318-4293-48E2-8C09-C9BE463FE9BC"
},
{
"criteria": "cpe:2.3:a:gnu:libtool:1.5.22:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3E8C014C-FD29-4E76-925F-9AD066BF2FAC"
},
{
"criteria": "cpe:2.3:a:gnu:libtool:1.5.24:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "BC2F6775-5513-4BCA-9E0C-44D25335331C"
},
{
"criteria": "cpe:2.3:a:gnu:libtool:1.5.26:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "738DA48E-A669-40D3-AAF1-547272AE1D7C"
},
{
"criteria": "cpe:2.3:a:gnu:libtool:2.2.6a:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "00FB75A4-05E0-427A-B6E3-1319761B7820"
}
],
"operator": "OR"
}
]
}
]