Vulnerability Details CVE-2010-4001
GMXRC.bash in Gromacs 4.5.1 and earlier places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory. NOTE: CVE disputes this issue because the GMXLDLIB value is always added to the beginning of LD_LIBRARY_PATH at a later point in the script
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 17.8%
CVSS Severity
CVSS v2 Score 4.6
References
- http://lists.fedoraproject.org/pipermail/package-announce/2010-November/050763.html
- http://lists.fedoraproject.org/pipermail/package-announce/2010-November/050783.html
- http://www.vupen.com/english/advisories/2010/2971
- https://bugzilla.redhat.com/show_bug.cgi?id=644596
- http://lists.fedoraproject.org/pipermail/package-announce/2010-November/050763.html
- http://lists.fedoraproject.org/pipermail/package-announce/2010-November/050783.html
- http://www.vupen.com/english/advisories/2010/2971
- https://bugzilla.redhat.com/show_bug.cgi?id=644596
Products affected by CVE-2010-4001
-
cpe:2.3:a:gromacs:gromacs:*
-
cpe:2.3:o:fedoraproject:fedora:-
-
cpe:2.3:o:fedoraproject:fedora:10
-
cpe:2.3:o:fedoraproject:fedora:11
-
cpe:2.3:o:fedoraproject:fedora:12
-
cpe:2.3:o:fedoraproject:fedora:13
-
cpe:2.3:o:fedoraproject:fedora:14
-
cpe:2.3:o:fedoraproject:fedora:15
-
cpe:2.3:o:fedoraproject:fedora:16
-
cpe:2.3:o:fedoraproject:fedora:17
-
cpe:2.3:o:fedoraproject:fedora:18
-
cpe:2.3:o:fedoraproject:fedora:19
-
cpe:2.3:o:fedoraproject:fedora:20
-
cpe:2.3:o:fedoraproject:fedora:21
-
cpe:2.3:o:fedoraproject:fedora:22
-
cpe:2.3:o:fedoraproject:fedora:23
-
cpe:2.3:o:fedoraproject:fedora:24
-
cpe:2.3:o:fedoraproject:fedora:25
-
cpe:2.3:o:fedoraproject:fedora:26
-
cpe:2.3:o:fedoraproject:fedora:27
-
cpe:2.3:o:fedoraproject:fedora:28
-
cpe:2.3:o:fedoraproject:fedora:29
-
cpe:2.3:o:fedoraproject:fedora:30
-
cpe:2.3:o:fedoraproject:fedora:31
-
cpe:2.3:o:fedoraproject:fedora:32
-
cpe:2.3:o:fedoraproject:fedora:33
-
cpe:2.3:o:fedoraproject:fedora:34
-
cpe:2.3:o:fedoraproject:fedora:35
-
cpe:2.3:o:fedoraproject:fedora:36
-
cpe:2.3:o:fedoraproject:fedora:37
-
cpe:2.3:o:fedoraproject:fedora:38
-
cpe:2.3:o:fedoraproject:fedora:39
-
cpe:2.3:o:fedoraproject:fedora:40
-
cpe:2.3:o:fedoraproject:fedora:41
-
cpe:2.3:o:fedoraproject:fedora:6
-
cpe:2.3:o:fedoraproject:fedora:7
-
cpe:2.3:o:fedoraproject:fedora:8
-
cpe:2.3:o:fedoraproject:fedora:9