The runtime linker (ld.so) in Solaris 8, 9, and 10 trusts the LD_AUDIT environment variable in setuid or setgid programs, which allows local users to gain privileges by (1) modifying LD_AUDIT to reference malicious code and possibly (2) using a long value for LD_AUDIT.
References
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2005-06-29 04:00
Updated : 2024-02-04 16:52
NVD link : CVE-2005-2072
Mitre link : CVE-2005-2072
CVE.ORG link : CVE-2005-2072
JSON object : View
Products Affected
sun
- sunos
- solaris
CWE
CWE-264
Permissions, Privileges, and Access Controls