CVE-2009-3736

MEDIUM

Description

ltdl.c in libltdl in GNU Libtool 1.5.x, and 2.2.6 before 2.2.6b, as used in Ham Radio Control Libraries, Q, and possibly other products, attempts to open a .la file in the current working directory, which allows local users to gain privileges via a Trojan horse file.

References

ftp://ftp.gnu.org/gnu/libtool/libtool-2.2.6a-2.2.6b.diff.gz

http://git.savannah.gnu.org/cgit/libtool.git/commit/?h=branch-1-5&id=29b48580df75f0c5baa2962548a4c101ec7ed7ec

http://hamlib.svn.sourceforge.net/viewvc/hamlib/trunk/libltdl/Makefile.am?revision=2841&view=markup

http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705

http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035133.html

http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035168.html

http://lists.fedoraproject.org/pipermail/package-announce/2011-March/054656.html

http://lists.fedoraproject.org/pipermail/package-announce/2011-March/054915.html

http://lists.fedoraproject.org/pipermail/package-announce/2011-March/054921.html

http://lists.gnu.org/archive/html/libtool/2009-11/msg00059.html

http://lists.gnu.org/archive/html/libtool/2009-11/msg00065.html

http://lists.opensuse.org/opensuse-security-announce/2010-03/msg00004.html

http://secunia.com/advisories/37414

http://secunia.com/advisories/37489

http://secunia.com/advisories/37997

http://secunia.com/advisories/38190

http://secunia.com/advisories/38577

http://secunia.com/advisories/38617

http://secunia.com/advisories/38696

http://secunia.com/advisories/38915

http://secunia.com/advisories/39299

http://secunia.com/advisories/39347

http://secunia.com/advisories/43617

http://secunia.com/advisories/55721

http://security.gentoo.org/glsa/glsa-201311-10.xml

http://support.avaya.com/css/P8/documents/100074869

http://www.mandriva.com/security/advisories?name=MDVSA-2009:307

http://www.mandriva.com/security/advisories?name=MDVSA-2010:035

http://www.mandriva.com/security/advisories?name=MDVSA-2010:091

http://www.mandriva.com/security/advisories?name=MDVSA-2010:105

http://www.redhat.com/support/errata/RHSA-2010-0039.html

http://www.securityfocus.com/bid/37128

http://www.vupen.com/english/advisories/2011/0574

https://bugzilla.redhat.com/show_bug.cgi?id=537941

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11687

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6951

https://rhn.redhat.com/errata/RHSA-2010-0095.html

https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01512.html

Details

Source: MITRE

Published: 2009-11-29

Updated: 2017-09-19

Risk Information

CVSS v2.0

Base Score: 6.9

Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C

Impact Score: 10

Exploitability Score: 3.4

Severity: MEDIUM

Tenable Plugins

View all (48 total)

IDNameProductFamilySeverity
89740VMware ESX / ESXi Third-Party Libraries and Components (VMSA-2010-0009) (remote check)NessusVMware ESX Local Security Checks
critical
79961GLSA-201412-08 : Multiple packages, Multiple vulnerabilities fixed in 2010NessusGentoo Local Security Checks
critical
70959GLSA-201311-10 : GraphicsMagick: Multiple vulnerabilitiesNessusGentoo Local Security Checks
high
67985Oracle Linux 3 / 4 / 5 : gcc / gcc4 (ELSA-2010-0039)NessusOracle Linux Local Security Checks
medium
67968Oracle Linux 3 / 4 / 5 : libtool (ELSA-2009-1646)NessusOracle Linux Local Security Checks
medium
60722Scientific Linux Security Update : gcc and gcc4 on SL3.x, SL4.x, SL5.x i386/x86_64NessusScientific Linux Local Security Checks
medium
60702Scientific Linux Security Update : libtool on SL3.x, SL4.x, SL5.x i386/x86_64NessusScientific Linux Local Security Checks
medium
52539Fedora 14 : q-7.11-8.fc14 (2011-1967)NessusFedora Local Security Checks
medium
52538Fedora 13 : q-7.11-8.fc13 (2011-1958)NessusFedora Local Security Checks
medium
52519Fedora 15 : q-7.11-10.fc15 (2011-1990)NessusFedora Local Security Checks
medium
49884SuSE 10 Security Update : libtool (ZYPP Patch Number 6683)NessusSuSE Local Security Checks
medium
48178Mandriva Linux Security Advisory : openoffice.org (MDVSA-2010:075)NessusMandriva Local Security Checks
medium
48172Mandriva Linux Security Advisory : openoffice.org (MDVSA-2010:035)NessusMandriva Local Security Checks
high
47511Fedora 12 : libprelude-0.9.24.1-2.fc12 (2010-8756)NessusFedora Local Security Checks
medium
47361Fedora 12 : hamlib-1.2.10-2.fc12 (2010-4407)NessusFedora Local Security Checks
medium
47360Fedora 11 : gnu-smalltalk-3.1-8.fc11 (2010-4392)NessusFedora Local Security Checks
medium
47358Fedora 11 : hamlib-1.2.8-4.fc11 (2010-4352)NessusFedora Local Security Checks
medium
47356Fedora 13 : gnu-smalltalk-3.1-8.fc13 (2010-4340)NessusFedora Local Security Checks
medium
47355Fedora 12 : gnu-smalltalk-3.1-8.fc12 (2010-4339)NessusFedora Local Security Checks
medium
47338Fedora 13 : esorex-3.7.2-6.fc13 (2010-4098)NessusFedora Local Security Checks
medium
47307Fedora 11 : esorex-3.7.2-3.fc11 (2010-3314)NessusFedora Local Security Checks
medium
47301Fedora 12 : esorex-3.7.2-5.fc12 (2010-3216)NessusFedora Local Security Checks
medium
47296Fedora 11 : mingw32-libltdl-1.5.26-17.fc11 (2010-2943)NessusFedora Local Security Checks
medium
47290Fedora 12 : mingw32-libltdl-1.5.26-20.fc12 (2010-2341)NessusFedora Local Security Checks
medium
47283Fedora 11 : gambas-1.0.19-12.fc11 (2010-1924)NessusFedora Local Security Checks
medium
47280Fedora 12 : gambas-1.0.19-12.fc12 (2010-1872)NessusFedora Local Security Checks
medium
47274Fedora 11 : gnash-0.8.6-13.fc11 (2010-1833)NessusFedora Local Security Checks
medium
47273Fedora 12 : gnash-0.8.6-13.fc12 (2010-1820)NessusFedora Local Security Checks
medium
46765VMSA-2010-0009 : ESXi ntp and ESX Service Console third-party updatesNessusVMware ESX Local Security Checks
critical
46699Mandriva Linux Security Advisory : openoffice.org (MDVSA-2010:105)NessusMandriva Local Security Checks
high
44996Mandriva Linux Security Advisory : openoffice.org (MDVSA-2010:056)NessusMandriva Local Security Checks
high
44929SuSE9 Security Update : libtool (YOU Patch Number 12554)NessusSuSE Local Security Checks
medium
44823Debian DSA-1958-1 : libtool - privilege escalationNessusDebian Local Security Checks
medium
44027CentOS 3 / 4 / 5 : gcc / gcc4 (CESA-2010:0039)NessusCentOS Local Security Checks
medium
43882RHEL 3 / 4 / 5 : gcc and gcc4 (RHSA-2010:0039)NessusRed Hat Local Security Checks
medium
43634SuSE 10 Security Update : libtool (ZYPP Patch Number 6678)NessusSuSE Local Security Checks
medium
43633SuSE 11 Security Update : libtool (SAT Patch Number 1626)NessusSuSE Local Security Checks
medium
43632openSUSE Security Update : libltdl-3 (libltdl-3-1638)NessusSuSE Local Security Checks
medium
43630openSUSE Security Update : libltdl-3 (libltdl-3-1638)NessusSuSE Local Security Checks
medium
43629openSUSE Security Update : libltdl-3 (libltdl-3-1638)NessusSuSE Local Security Checks
medium
43612Fedora 12 : gcc-4.4.2-20.fc12 (2009-12813)NessusFedora Local Security Checks
medium
43611Fedora 12 : libtool-2.2.6-17.fc12 (2009-12562)NessusFedora Local Security Checks
medium
43372Fedora 11 : libtool-2.2.6-11.fc11.3 (2009-12725)NessusFedora Local Security Checks
medium
43078RHEL 3 / 4 / 5 : libtool (RHSA-2009:1646)NessusRed Hat Local Security Checks
medium
43070CentOS 3 / 4 / 5 : libtool (CESA-2009:1646)NessusCentOS Local Security Checks
medium
43021Mandriva Linux Security Advisory : xmlsec1 (MDVSA-2009:318)NessusMandriva Local Security Checks
medium
42943Mandriva Linux Security Advisory : libtool (MDVSA-2009:307-1)NessusMandriva Local Security Checks
medium
42912FreeBSD : libtool -- Library Search Path Privilege Escalation Issue (77c14729-dc5e-11de-92ae-02e0184b8d35)NessusFreeBSD Local Security Checks
medium