Vulnerability Details CVE-2006-6474
Untrusted search path vulnerability in McAfee VirusScan for Linux 4510e and earlier includes the current working directory in the DT_RPATH environment variable, which allows local users to load arbitrary ELF DSO libraries and execute arbitrary code by installing malicious libraries in that directory.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 23.2%
CVSS Severity
CVSS v2 Score 4.6
References
- http://secunia.com/advisories/23278
- http://secunia.com/advisories/23429
- http://security.gentoo.org/glsa/glsa-200612-15.xml
- http://securitytracker.com/id?1017385
- http://www.securityfocus.com/bid/21592
- http://www.vupen.com/english/advisories/2006/5023
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30898
- http://secunia.com/advisories/23278
- http://secunia.com/advisories/23429
- http://security.gentoo.org/glsa/glsa-200612-15.xml
- http://securitytracker.com/id?1017385
- http://www.securityfocus.com/bid/21592
- http://www.vupen.com/english/advisories/2006/5023
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30898