Vulnerability Details CVE-2005-0627
Qt before 3.3.4 searches the BUILD_PREFIX directory, which could be world-writable, to load shared libraries regardless of the LD_LIBRARY_PATH environment variable, which allows local users to execute arbitrary programs.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 20.9%
CVSS Severity
CVSS v2 Score 4.6
References
Products affected by CVE-2005-0627
-
cpe:2.3:a:trolltech:qt:3.0
-
cpe:2.3:a:trolltech:qt:3.0.3
-
cpe:2.3:a:trolltech:qt:3.0.5
-
cpe:2.3:a:trolltech:qt:3.1
-
cpe:2.3:a:trolltech:qt:3.1.1
-
cpe:2.3:a:trolltech:qt:3.1.2
-
cpe:2.3:a:trolltech:qt:3.2.1
-
cpe:2.3:a:trolltech:qt:3.2.3
-
cpe:2.3:a:trolltech:qt:3.3.0
-
cpe:2.3:a:trolltech:qt:3.3.1
-
cpe:2.3:a:trolltech:qt:3.3.2
-
cpe:2.3:a:trolltech:qt:3.3.3