Untrusted search path vulnerability in the wrapper scripts for the (1) rug, (2) zen-updater, (3) zen-installer, and (4) zen-remover programs on SUSE Linux 10.1 and Enterprise 10 allows local users to gain privileges via modified (a) LD_LIBRARY_PATH and (b) MONO_GAC_PREFIX environment variables.

Threat-Mapped Scoring

Score: 0.0

Priority: Unclassified

EPSS

Score: 0.00032
Percentile: 0.07242

CVSS Scoring

Affected Products

• cpe:2.3:o:novell:suse_linux:10.1:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_linux:10:*:enterprise_desktop:*:*:*:*:*

← Back to Home