Untrusted Search Path

CVE-2005-2811

Medium

4.6/10

Summary

Untrusted search path vulnerability in Net-SNMP in versions through 5.2.1.2, on Gentoo Linux, installs certain Perl modules with an insecure "DT_RPATH", which could allow local users to gain privileges.

Access Complexity: LOW
AccessVector: LOCAL
Authentication: NONE
Integrity Impact: PARTIAL
Confidentiality Impact: PARTIAL
Availability Impact: PARTIAL

CWE-426 - Untrusted Search Path

The application searches for critical resources using an externally-supplied search path that can point to resources that are not under the application's direct control.

References

Advisory

Advisory Timeline

Published Sep 07, 2005

Untrusted Search Path

CVE-2005-2811

Summary

CWE-426 - Untrusted Search Path

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS