fkie_cve-2009-3736
Vulnerability from fkie_nvd
Published
2009-11-29 13:07
Modified
2025-04-09 00:30
Severity ?
Summary
ltdl.c in libltdl in GNU Libtool 1.5.x, and 2.2.6 before 2.2.6b, as used in Ham Radio Control Libraries, Q, and possibly other products, attempts to open a .la file in the current working directory, which allows local users to gain privileges via a Trojan horse file.
References
cret@cert.orgftp://ftp.gnu.org/gnu/libtool/libtool-2.2.6a-2.2.6b.diff.gzPatch
cret@cert.orghttp://git.savannah.gnu.org/cgit/libtool.git/commit/?h=branch-1-5&id=29b48580df75f0c5baa2962548a4c101ec7ed7ecPatch
cret@cert.orghttp://hamlib.svn.sourceforge.net/viewvc/hamlib/trunk/libltdl/Makefile.am?revision=2841&view=markup
cret@cert.orghttp://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705
cret@cert.orghttp://lists.fedoraproject.org/pipermail/package-announce/2010-February/035133.html
cret@cert.orghttp://lists.fedoraproject.org/pipermail/package-announce/2010-February/035168.html
cret@cert.orghttp://lists.fedoraproject.org/pipermail/package-announce/2011-March/054656.html
cret@cert.orghttp://lists.fedoraproject.org/pipermail/package-announce/2011-March/054915.html
cret@cert.orghttp://lists.fedoraproject.org/pipermail/package-announce/2011-March/054921.html
cret@cert.orghttp://lists.gnu.org/archive/html/libtool/2009-11/msg00059.htmlPatch
cret@cert.orghttp://lists.gnu.org/archive/html/libtool/2009-11/msg00065.htmlPatch
cret@cert.orghttp://lists.opensuse.org/opensuse-security-announce/2010-03/msg00004.html
cret@cert.orghttp://secunia.com/advisories/37414Vendor Advisory
cret@cert.orghttp://secunia.com/advisories/37489Vendor Advisory
cret@cert.orghttp://secunia.com/advisories/37997
cret@cert.orghttp://secunia.com/advisories/38190
cret@cert.orghttp://secunia.com/advisories/38577
cret@cert.orghttp://secunia.com/advisories/38617
cret@cert.orghttp://secunia.com/advisories/38696
cret@cert.orghttp://secunia.com/advisories/38915
cret@cert.orghttp://secunia.com/advisories/39299
cret@cert.orghttp://secunia.com/advisories/39347
cret@cert.orghttp://secunia.com/advisories/43617
cret@cert.orghttp://secunia.com/advisories/55721
cret@cert.orghttp://security.gentoo.org/glsa/glsa-201311-10.xml
cret@cert.orghttp://support.avaya.com/css/P8/documents/100074869
cret@cert.orghttp://www.mandriva.com/security/advisories?name=MDVSA-2009:307
cret@cert.orghttp://www.mandriva.com/security/advisories?name=MDVSA-2010:035
cret@cert.orghttp://www.mandriva.com/security/advisories?name=MDVSA-2010:091
cret@cert.orghttp://www.mandriva.com/security/advisories?name=MDVSA-2010:105
cret@cert.orghttp://www.redhat.com/support/errata/RHSA-2010-0039.html
cret@cert.orghttp://www.securityfocus.com/bid/37128Patch
cret@cert.orghttp://www.vupen.com/english/advisories/2011/0574
cret@cert.orghttps://bugzilla.redhat.com/show_bug.cgi?id=537941Patch
cret@cert.orghttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11687
cret@cert.orghttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6951
cret@cert.orghttps://rhn.redhat.com/errata/RHSA-2010-0095.html
cret@cert.orghttps://www.redhat.com/archives/fedora-package-announce/2009-December/msg01512.html
af854a3a-2127-422b-91ae-364da2661108ftp://ftp.gnu.org/gnu/libtool/libtool-2.2.6a-2.2.6b.diff.gzPatch
af854a3a-2127-422b-91ae-364da2661108http://git.savannah.gnu.org/cgit/libtool.git/commit/?h=branch-1-5&id=29b48580df75f0c5baa2962548a4c101ec7ed7ecPatch
af854a3a-2127-422b-91ae-364da2661108http://hamlib.svn.sourceforge.net/viewvc/hamlib/trunk/libltdl/Makefile.am?revision=2841&view=markup
af854a3a-2127-422b-91ae-364da2661108http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705
af854a3a-2127-422b-91ae-364da2661108http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035133.html
af854a3a-2127-422b-91ae-364da2661108http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035168.html
af854a3a-2127-422b-91ae-364da2661108http://lists.fedoraproject.org/pipermail/package-announce/2011-March/054656.html
af854a3a-2127-422b-91ae-364da2661108http://lists.fedoraproject.org/pipermail/package-announce/2011-March/054915.html
af854a3a-2127-422b-91ae-364da2661108http://lists.fedoraproject.org/pipermail/package-announce/2011-March/054921.html
af854a3a-2127-422b-91ae-364da2661108http://lists.gnu.org/archive/html/libtool/2009-11/msg00059.htmlPatch
af854a3a-2127-422b-91ae-364da2661108http://lists.gnu.org/archive/html/libtool/2009-11/msg00065.htmlPatch
af854a3a-2127-422b-91ae-364da2661108http://lists.opensuse.org/opensuse-security-announce/2010-03/msg00004.html
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/37414Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/37489Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/37997
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/38190
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/38577
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/38617
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/38696
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/38915
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/39299
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/39347
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/43617
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/55721
af854a3a-2127-422b-91ae-364da2661108http://security.gentoo.org/glsa/glsa-201311-10.xml
af854a3a-2127-422b-91ae-364da2661108http://support.avaya.com/css/P8/documents/100074869
af854a3a-2127-422b-91ae-364da2661108http://www.mandriva.com/security/advisories?name=MDVSA-2009:307
af854a3a-2127-422b-91ae-364da2661108http://www.mandriva.com/security/advisories?name=MDVSA-2010:035
af854a3a-2127-422b-91ae-364da2661108http://www.mandriva.com/security/advisories?name=MDVSA-2010:091
af854a3a-2127-422b-91ae-364da2661108http://www.mandriva.com/security/advisories?name=MDVSA-2010:105
af854a3a-2127-422b-91ae-364da2661108http://www.redhat.com/support/errata/RHSA-2010-0039.html
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/37128Patch
af854a3a-2127-422b-91ae-364da2661108http://www.vupen.com/english/advisories/2011/0574
af854a3a-2127-422b-91ae-364da2661108https://bugzilla.redhat.com/show_bug.cgi?id=537941Patch
af854a3a-2127-422b-91ae-364da2661108https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11687
af854a3a-2127-422b-91ae-364da2661108https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6951
af854a3a-2127-422b-91ae-364da2661108https://rhn.redhat.com/errata/RHSA-2010-0095.html
af854a3a-2127-422b-91ae-364da2661108https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01512.html
Impacted products
Vendor Product Version
gnu libtool 1.5
gnu libtool 1.5.2
gnu libtool 1.5.4
gnu libtool 1.5.6
gnu libtool 1.5.8
gnu libtool 1.5.10
gnu libtool 1.5.12
gnu libtool 1.5.14
gnu libtool 1.5.16
gnu libtool 1.5.18
gnu libtool 1.5.20
gnu libtool 1.5.22
gnu libtool 1.5.24
gnu libtool 1.5.26
gnu libtool 2.2.6a


To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:gnu:libtool:1.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "0418D690-1347-49A7-9962-BA70DA7858E7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnu:libtool:1.5.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "8C580E0A-701E-4AB9-8B28-A56FC5BFF389",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnu:libtool:1.5.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "70A39F0F-45B0-49D9-8793-D73FD0E86829",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnu:libtool:1.5.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "5BE3BBE7-28DD-47EF-9342-BFE9F5083653",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnu:libtool:1.5.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "5E95FAA6-739A-4E5E-AB22-8626B77E54EF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnu:libtool:1.5.10:*:*:*:*:*:*:*",
              "matchCriteriaId": "ABF88238-E786-4F8E-8101-ACD0264D0AA2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnu:libtool:1.5.12:*:*:*:*:*:*:*",
              "matchCriteriaId": "4F4EFADC-D576-4A2F-B41D-8786721B89DD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnu:libtool:1.5.14:*:*:*:*:*:*:*",
              "matchCriteriaId": "749BF2C8-250D-4416-A037-2D0F74C209C4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnu:libtool:1.5.16:*:*:*:*:*:*:*",
              "matchCriteriaId": "5DF254A6-7175-4D61-82E7-82FAD2BA6787",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnu:libtool:1.5.18:*:*:*:*:*:*:*",
              "matchCriteriaId": "93146915-94E2-402A-87FC-F4BEEDB5DEEB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnu:libtool:1.5.20:*:*:*:*:*:*:*",
              "matchCriteriaId": "3D960318-4293-48E2-8C09-C9BE463FE9BC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnu:libtool:1.5.22:*:*:*:*:*:*:*",
              "matchCriteriaId": "3E8C014C-FD29-4E76-925F-9AD066BF2FAC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnu:libtool:1.5.24:*:*:*:*:*:*:*",
              "matchCriteriaId": "BC2F6775-5513-4BCA-9E0C-44D25335331C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnu:libtool:1.5.26:*:*:*:*:*:*:*",
              "matchCriteriaId": "738DA48E-A669-40D3-AAF1-547272AE1D7C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnu:libtool:2.2.6a:*:*:*:*:*:*:*",
              "matchCriteriaId": "00FB75A4-05E0-427A-B6E3-1319761B7820",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "ltdl.c in libltdl in GNU Libtool 1.5.x, and 2.2.6 before 2.2.6b, as used in Ham Radio Control Libraries, Q, and possibly other products, attempts to open a .la file in the current working directory, which allows local users to gain privileges via a Trojan horse file."
    },
    {
      "lang": "es",
      "value": "ltdl.c en libltdl en GNU Libtool v1.5.x, y v2.2.6 anterior v2.2.6b, intenta abrir un archivo .la en el directorio de trabajo, lo que permite a usuarios locales obtener privilegios a trav\u00e9s de un troyano."
    }
  ],
  "id": "CVE-2009-3736",
  "lastModified": "2025-04-09T00:30:58.490",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "LOCAL",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 6.9,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "COMPLETE",
          "vectorString": "AV:L/AC:M/Au:N/C:C/I:C/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 3.4,
        "impactScore": 10.0,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": true
      }
    ]
  },
  "published": "2009-11-29T13:07:52.030",
  "references": [
    {
      "source": "cret@cert.org",
      "tags": [
        "Patch"
      ],
      "url": "ftp://ftp.gnu.org/gnu/libtool/libtool-2.2.6a-2.2.6b.diff.gz"
    },
    {
      "source": "cret@cert.org",
      "tags": [
        "Patch"
      ],
      "url": "http://git.savannah.gnu.org/cgit/libtool.git/commit/?h=branch-1-5\u0026id=29b48580df75f0c5baa2962548a4c101ec7ed7ec"
    },
    {
      "source": "cret@cert.org",
      "url": "http://hamlib.svn.sourceforge.net/viewvc/hamlib/trunk/libltdl/Makefile.am?revision=2841\u0026view=markup"
    },
    {
      "source": "cret@cert.org",
      "url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10705"
    },
    {
      "source": "cret@cert.org",
      "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035133.html"
    },
    {
      "source": "cret@cert.org",
      "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035168.html"
    },
    {
      "source": "cret@cert.org",
      "url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-March/054656.html"
    },
    {
      "source": "cret@cert.org",
      "url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-March/054915.html"
    },
    {
      "source": "cret@cert.org",
      "url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-March/054921.html"
    },
    {
      "source": "cret@cert.org",
      "tags": [
        "Patch"
      ],
      "url": "http://lists.gnu.org/archive/html/libtool/2009-11/msg00059.html"
    },
    {
      "source": "cret@cert.org",
      "tags": [
        "Patch"
      ],
      "url": "http://lists.gnu.org/archive/html/libtool/2009-11/msg00065.html"
    },
    {
      "source": "cret@cert.org",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2010-03/msg00004.html"
    },
    {
      "source": "cret@cert.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/37414"
    },
    {
      "source": "cret@cert.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/37489"
    },
    {
      "source": "cret@cert.org",
      "url": "http://secunia.com/advisories/37997"
    },
    {
      "source": "cret@cert.org",
      "url": "http://secunia.com/advisories/38190"
    },
    {
      "source": "cret@cert.org",
      "url": "http://secunia.com/advisories/38577"
    },
    {
      "source": "cret@cert.org",
      "url": "http://secunia.com/advisories/38617"
    },
    {
      "source": "cret@cert.org",
      "url": "http://secunia.com/advisories/38696"
    },
    {
      "source": "cret@cert.org",
      "url": "http://secunia.com/advisories/38915"
    },
    {
      "source": "cret@cert.org",
      "url": "http://secunia.com/advisories/39299"
    },
    {
      "source": "cret@cert.org",
      "url": "http://secunia.com/advisories/39347"
    },
    {
      "source": "cret@cert.org",
      "url": "http://secunia.com/advisories/43617"
    },
    {
      "source": "cret@cert.org",
      "url": "http://secunia.com/advisories/55721"
    },
    {
      "source": "cret@cert.org",
      "url": "http://security.gentoo.org/glsa/glsa-201311-10.xml"
    },
    {
      "source": "cret@cert.org",
      "url": "http://support.avaya.com/css/P8/documents/100074869"
    },
    {
      "source": "cret@cert.org",
      "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:307"
    },
    {
      "source": "cret@cert.org",
      "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:035"
    },
    {
      "source": "cret@cert.org",
      "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:091"
    },
    {
      "source": "cret@cert.org",
      "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:105"
    },
    {
      "source": "cret@cert.org",
      "url": "http://www.redhat.com/support/errata/RHSA-2010-0039.html"
    },
    {
      "source": "cret@cert.org",
      "tags": [
        "Patch"
      ],
      "url": "http://www.securityfocus.com/bid/37128"
    },
    {
      "source": "cret@cert.org",
      "url": "http://www.vupen.com/english/advisories/2011/0574"
    },
    {
      "source": "cret@cert.org",
      "tags": [
        "Patch"
      ],
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=537941"
    },
    {
      "source": "cret@cert.org",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11687"
    },
    {
      "source": "cret@cert.org",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6951"
    },
    {
      "source": "cret@cert.org",
      "url": "https://rhn.redhat.com/errata/RHSA-2010-0095.html"
    },
    {
      "source": "cret@cert.org",
      "url": "https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01512.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "ftp://ftp.gnu.org/gnu/libtool/libtool-2.2.6a-2.2.6b.diff.gz"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "http://git.savannah.gnu.org/cgit/libtool.git/commit/?h=branch-1-5\u0026id=29b48580df75f0c5baa2962548a4c101ec7ed7ec"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://hamlib.svn.sourceforge.net/viewvc/hamlib/trunk/libltdl/Makefile.am?revision=2841\u0026view=markup"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10705"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035133.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035168.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-March/054656.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-March/054915.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-March/054921.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "http://lists.gnu.org/archive/html/libtool/2009-11/msg00059.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "http://lists.gnu.org/archive/html/libtool/2009-11/msg00065.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2010-03/msg00004.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/37414"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/37489"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/37997"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/38190"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/38577"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/38617"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/38696"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/38915"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/39299"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/39347"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/43617"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/55721"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://security.gentoo.org/glsa/glsa-201311-10.xml"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://support.avaya.com/css/P8/documents/100074869"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:307"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:035"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:091"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:105"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.redhat.com/support/errata/RHSA-2010-0039.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "http://www.securityfocus.com/bid/37128"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2011/0574"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=537941"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11687"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6951"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://rhn.redhat.com/errata/RHSA-2010-0095.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01512.html"
    }
  ],
  "sourceIdentifier": "cret@cert.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-Other"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
  • Confirmed: The vulnerability is confirmed from an analyst perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
  • Patched: This vulnerability was successfully patched by the user reporting the sighting.
  • Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
  • Not confirmed: The user expresses doubt about the veracity of the vulnerability.
  • Not patched: This vulnerability was not successfully patched by the user reporting the sighting.