Banshee-project » Banshee : Security Vulnerabilities, CVEs, Published In 2010
The (1) banshee-1 and (2) muinshee scripts in Banshee 1.8.0 and earlier place a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory. NOTE: Banshee might also be affected using GST_PLUGIN_PATH.
Max CVSS
6.9
EPSS Score
0.04%
Published
2010-11-06
Updated
2011-09-15
1 vulnerabilities found