← back
CVE-2006-6474

CVE-2006-6474

EPSS 0.4%
Untrusted search path vulnerability in McAfee VirusScan for Linux 4510e and earlier includes the current working directory in the DT_RPATH environment variable, which allows local users to load arbitrary ELF DSO libraries and execute arbitrary code by installing malicious libraries in that directory.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://secunia.com/advisories/23278http://secunia.com/advisories/23429http://security.gentoo.org/glsa/glsa-200612-15.xmlhttp://securitytracker.com/id?1017385https://exchange.xforce.ibmcloud.com/vulnerabilities/30898http://www.securityfocus.com/bid/21592http://www.vupen.com/english/advisories/2006/5023