Untrusted Search Path
CVE-2005-2811
Summary
Untrusted search path vulnerability in Net-SNMP in versions through 5.2.1.2, on Gentoo Linux, installs certain Perl modules with an insecure "DT_RPATH", which could allow local users to gain privileges.
- LOW
- LOCAL
- NONE
- PARTIAL
- PARTIAL
- PARTIAL
CWE-426 - Untrusted Search Path
The application searches for critical resources using an externally-supplied search path that can point to resources that are not under the application's direct control.
References
Advisory Timeline
- Published