CVE-2009-3736

medium
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

ltdl.c in libltdl in GNU Libtool 1.5.x, and 2.2.6 before 2.2.6b, as used in Ham Radio Control Libraries, Q, and possibly other products, attempts to open a .la file in the current working directory, which allows local users to gain privileges via a Trojan horse file.

References

ftp://ftp.gnu.org/gnu/libtool/libtool-2.2.6a-2.2.6b.diff.gz

http://git.savannah.gnu.org/cgit/libtool.git/commit/?h=branch-1-5&id=29b48580df75f0c5baa2962548a4c101ec7ed7ec

http://hamlib.svn.sourceforge.net/viewvc/hamlib/trunk/libltdl/Makefile.am?revision=2841&view=markup

http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705

http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035133.html

http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035168.html

http://lists.fedoraproject.org/pipermail/package-announce/2011-March/054656.html

http://lists.fedoraproject.org/pipermail/package-announce/2011-March/054915.html

http://lists.fedoraproject.org/pipermail/package-announce/2011-March/054921.html

http://lists.gnu.org/archive/html/libtool/2009-11/msg00059.html

http://lists.gnu.org/archive/html/libtool/2009-11/msg00065.html

http://lists.opensuse.org/opensuse-security-announce/2010-03/msg00004.html

http://secunia.com/advisories/37414

http://secunia.com/advisories/37489

http://secunia.com/advisories/37997

http://secunia.com/advisories/38190

http://secunia.com/advisories/38577

http://secunia.com/advisories/38617

http://secunia.com/advisories/38696

http://secunia.com/advisories/38915

http://secunia.com/advisories/39299

http://secunia.com/advisories/39347

http://secunia.com/advisories/43617

http://secunia.com/advisories/55721

http://security.gentoo.org/glsa/glsa-201311-10.xml

http://support.avaya.com/css/P8/documents/100074869

http://www.mandriva.com/security/advisories?name=MDVSA-2009:307

http://www.mandriva.com/security/advisories?name=MDVSA-2010:035

http://www.mandriva.com/security/advisories?name=MDVSA-2010:091

http://www.mandriva.com/security/advisories?name=MDVSA-2010:105

http://www.redhat.com/support/errata/RHSA-2010-0039.html

http://www.securityfocus.com/bid/37128

http://www.vupen.com/english/advisories/2011/0574

https://bugzilla.redhat.com/show_bug.cgi?id=537941

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11687

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6951

https://rhn.redhat.com/errata/RHSA-2010-0095.html

https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01512.html

Details

Source: MITRE

Published: 2009-11-29

Updated: 2017-09-19

Risk Information

CVSS v2

Base Score: 6.9

Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C

Impact Score: 10

Exploitability Score: 3.4

Severity: MEDIUM

Tenable Plugins

View all (48 total)

IDNameProductFamilySeverity
89740VMware ESX / ESXi Third-Party Libraries and Components (VMSA-2010-0009) (remote check)NessusVMware ESX Local Security Checks
critical
79961GLSA-201412-08 : Multiple packages, Multiple vulnerabilities fixed in 2010NessusGentoo Local Security Checks
critical
70959GLSA-201311-10 : GraphicsMagick: Multiple vulnerabilitiesNessusGentoo Local Security Checks
high
67985Oracle Linux 3 / 4 / 5 : gcc / gcc4 (ELSA-2010-0039)NessusOracle Linux Local Security Checks
medium
67968Oracle Linux 3 / 4 / 5 : libtool (ELSA-2009-1646)NessusOracle Linux Local Security Checks
medium
60722Scientific Linux Security Update : gcc and gcc4 on SL3.x, SL4.x, SL5.x i386/x86_64NessusScientific Linux Local Security Checks
medium
60702Scientific Linux Security Update : libtool on SL3.x, SL4.x, SL5.x i386/x86_64NessusScientific Linux Local Security Checks
medium
52539Fedora 14 : q-7.11-8.fc14 (2011-1967)NessusFedora Local Security Checks
medium
52538Fedora 13 : q-7.11-8.fc13 (2011-1958)NessusFedora Local Security Checks
medium
52519Fedora 15 : q-7.11-10.fc15 (2011-1990)NessusFedora Local Security Checks
medium
49884SuSE 10 Security Update : libtool (ZYPP Patch Number 6683)NessusSuSE Local Security Checks
medium
48178Mandriva Linux Security Advisory : openoffice.org (MDVSA-2010:075)NessusMandriva Local Security Checks
medium
48172Mandriva Linux Security Advisory : openoffice.org (MDVSA-2010:035)NessusMandriva Local Security Checks
high
47511Fedora 12 : libprelude-0.9.24.1-2.fc12 (2010-8756)NessusFedora Local Security Checks
medium
47361Fedora 12 : hamlib-1.2.10-2.fc12 (2010-4407)NessusFedora Local Security Checks
medium
47360Fedora 11 : gnu-smalltalk-3.1-8.fc11 (2010-4392)NessusFedora Local Security Checks
medium
47358Fedora 11 : hamlib-1.2.8-4.fc11 (2010-4352)NessusFedora Local Security Checks
medium
47356Fedora 13 : gnu-smalltalk-3.1-8.fc13 (2010-4340)NessusFedora Local Security Checks
medium
47355Fedora 12 : gnu-smalltalk-3.1-8.fc12 (2010-4339)NessusFedora Local Security Checks
medium
47338Fedora 13 : esorex-3.7.2-6.fc13 (2010-4098)NessusFedora Local Security Checks
medium
47307Fedora 11 : esorex-3.7.2-3.fc11 (2010-3314)NessusFedora Local Security Checks
medium
47301Fedora 12 : esorex-3.7.2-5.fc12 (2010-3216)NessusFedora Local Security Checks
medium
47296Fedora 11 : mingw32-libltdl-1.5.26-17.fc11 (2010-2943)NessusFedora Local Security Checks
medium
47290Fedora 12 : mingw32-libltdl-1.5.26-20.fc12 (2010-2341)NessusFedora Local Security Checks
medium
47283Fedora 11 : gambas-1.0.19-12.fc11 (2010-1924)NessusFedora Local Security Checks
medium
47280Fedora 12 : gambas-1.0.19-12.fc12 (2010-1872)NessusFedora Local Security Checks
medium
47274Fedora 11 : gnash-0.8.6-13.fc11 (2010-1833)NessusFedora Local Security Checks
medium
47273Fedora 12 : gnash-0.8.6-13.fc12 (2010-1820)NessusFedora Local Security Checks
medium
46765VMSA-2010-0009 : ESXi ntp and ESX Service Console third-party updatesNessusVMware ESX Local Security Checks
high
46699Mandriva Linux Security Advisory : openoffice.org (MDVSA-2010:105)NessusMandriva Local Security Checks
high
44996Mandriva Linux Security Advisory : openoffice.org (MDVSA-2010:056)NessusMandriva Local Security Checks
high
44929SuSE9 Security Update : libtool (YOU Patch Number 12554)NessusSuSE Local Security Checks
medium
44823Debian DSA-1958-1 : libtool - privilege escalationNessusDebian Local Security Checks
medium
44027CentOS 3 / 4 / 5 : gcc / gcc4 (CESA-2010:0039)NessusCentOS Local Security Checks
medium
43882RHEL 3 / 4 / 5 : gcc and gcc4 (RHSA-2010:0039)NessusRed Hat Local Security Checks
medium
43634SuSE 10 Security Update : libtool (ZYPP Patch Number 6678)NessusSuSE Local Security Checks
medium
43633SuSE 11 Security Update : libtool (SAT Patch Number 1626)NessusSuSE Local Security Checks
medium
43632openSUSE Security Update : libltdl-3 (libltdl-3-1638)NessusSuSE Local Security Checks
medium
43630openSUSE Security Update : libltdl-3 (libltdl-3-1638)NessusSuSE Local Security Checks
medium
43629openSUSE Security Update : libltdl-3 (libltdl-3-1638)NessusSuSE Local Security Checks
medium
43612Fedora 12 : gcc-4.4.2-20.fc12 (2009-12813)NessusFedora Local Security Checks
medium
43611Fedora 12 : libtool-2.2.6-17.fc12 (2009-12562)NessusFedora Local Security Checks
medium
43372Fedora 11 : libtool-2.2.6-11.fc11.3 (2009-12725)NessusFedora Local Security Checks
medium
43078RHEL 3 / 4 / 5 : libtool (RHSA-2009:1646)NessusRed Hat Local Security Checks
medium
43070CentOS 3 / 4 / 5 : libtool (CESA-2009:1646)NessusCentOS Local Security Checks
medium
43021Mandriva Linux Security Advisory : xmlsec1 (MDVSA-2009:318)NessusMandriva Local Security Checks
medium
42943Mandriva Linux Security Advisory : libtool (MDVSA-2009:307-1)NessusMandriva Local Security Checks
medium
42912FreeBSD : libtool -- Library Search Path Privilege Escalation Issue (77c14729-dc5e-11de-92ae-02e0184b8d35)NessusFreeBSD Local Security Checks
medium