Vulnerability Details : CVE-2010-3350
bareFTP 0.3.4 places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory.
Vulnerability category: Input validation
Exploit prediction scoring system (EPSS) score for CVE-2010-3350
Probability of exploitation activity in the next 30 days: 0.04%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 6 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2010-3350
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
6.9
|
MEDIUM | AV:L/AC:M/Au:N/C:C/I:C/A:C |
3.4
|
10.0
|
NIST |
CWE ids for CVE-2010-3350
-
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.Assigned by: nvd@nist.gov (Primary)
References for CVE-2010-3350
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/64433
bareFTP LD_LIBRARY_PATH privilege escalation CVE-2010-3350 Vulnerability Report
-
http://www.securityfocus.com/bid/44334
bareFTP 'LD_LIBRARY_PATH' Local Privilege Escalation Vulnerability
-
http://lists.fedoraproject.org/pipermail/package-announce/2010-December/051921.html
[SECURITY] Fedora 14 Update: bareftp-0.3.7-1.fc14
-
http://www.vupen.com/english/advisories/2010/3141
Webmail | OVH- OVH
-
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=598284
#598284 - bareftp: CVE-2010-3350: insecure library loading - Debian Bug report logsPatch
-
http://lists.fedoraproject.org/pipermail/package-announce/2010-December/051936.html
[SECURITY] Fedora 13 Update: bareftp-0.3.7-1.fc13
-
http://gitorious.org/bareftp/bareftp/blobs/15489abdb4c698cf832e95184bfe769a1ba70238/ChangeLog
Products affected by CVE-2010-3350
- cpe:2.3:a:bareftp:bareftp:0.3.4:*:*:*:*:*:*:*