CVE-2005-4791 Common Vulnerabilities and Exposures

Upstream information

CVE-2005-4791 at MITRE

Description

Multiple untrusted search path vulnerabilities in SUSE Linux 10.0 cause the working directory to be added to LD_LIBRARY_PATH, which might allow local users to execute arbitrary code via (1) liferea or (2) banshee.

SUSE information

Overall state of this security issue: Resolved

This issue is currently not rated by SUSE as it is not affecting the SUSE Enterprise products.

CVSS v2 Scores
	National Vulnerability Database
Base Score	2.1
Vector	AV:L/AC:L/Au:N/C:N/I:P/A:N
Access Vector	Local
Access Complexity	Low
Authentication	None
Confidentiality Impact	None
Integrity Impact	Partial
Availability Impact	None

SUSE Bugzilla entry: 118188 [RESOLVED / FIXED]

No SUSE Security Announcements cross referenced.

List of released packages

Product(s)	Fixed package version(s)	References
openSUSE Tumbleweed	`liferea >= 1.13.6-2.2` `liferea-lang >= 1.13.6-2.2`	Patchnames: openSUSE-Tumbleweed-2024-11020

SUSE Timeline for this CVE

CVE page created: Fri Jun 28 03:01:37 2013
CVE page last modified: Tue Sep 3 18:10:57 2024