CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2010-3362

lastfm 1.5.4 places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 14.1%

CVSS Severity

CVSS v2 Score 6.9

References

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=598294
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=598294

Products affected by CVE-2010-3362

Last » Last.fm » Version: 1.5.4

cpe:2.3:a:last:last.fm:1.5.4

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2010-3362

Products

Pricing

Contact Us