CVE-2010-3856
CVE-2010-3856
ld.so in the GNU C Library (aka glibc or libc6) before 2.11.3, and 2.12.x before 2.12.2, does not properly restrict use of the LD_AUDIT environment variable to reference dynamic shared objects (DSOs) as audit objects, which allows local users to gain privileges by leveraging an unsafe DSO located in a trusted library directory, as demonstrated by libpcprofile.so.
Affected products
n/a · n/apublic PoCs found — 6
cve_referencepacketstormsecurity.com/files/153278/WAGO-852-Industrial-Managed-Switch-Series-Code-Execution-Hardcoded-Credentials.htmlunverifiedcve_referencepacketstormsecurity.com/files/173661/OpenSSH-Forwarded-SSH-Agent-Remote-Code-Execution.htmlunverifiedcve_referencewww.exploit-db.com/exploits/44025/unverifiedexploitdbwww.exploit-db.com/exploits/18105unverifiedexploitdbwww.exploit-db.com/exploits/44025unverifiedexploitdbwww.exploit-db.com/exploits/15304unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://packetstormsecurity.com/files/153278/WAGO-852-Industrial-Managed-Switch-Series-Code-Execution-Hardcoded-Credentials.htmlhttp://packetstormsecurity.com/files/173661/OpenSSH-Forwarded-SSH-Agent-Remote-Code-Execution.htmlhttps://bugzilla.redhat.com/show_bug.cgi?id=645672http://seclists.org/fulldisclosure/2010/Oct/344http://seclists.org/fulldisclosure/2019/Jun/18http://seclists.org/fulldisclosure/2023/Jul/31http://secunia.com/advisories/42787http://security.gentoo.org/glsa/glsa-201011-01.xmlhttps://lists.opensuse.org/opensuse-security-announce/2010-10/msg00007.htmlhttp://sourceware.org/ml/libc-hacker/2010-10/msg00010.htmlhttps://rhn.redhat.com/errata/RHSA-2010-0793.htmlhttps://seclists.org/bugtraq/2019/Jun/14