ltdl.c in libltdl in GNU Libtool 1.5.x, and 2.2.6 prior to 2.2.6b, as used in Ham Radio Control Libraries, Q, and possibly other products, attempts to open a .la file in the current working directory, which allows local users to gain privileges via a Trojan horse file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
gnu libtool 1.5.10 |
||
gnu libtool 1.5.12 |
||
gnu libtool 1.5.14 |
||
gnu libtool 1.5 |
||
gnu libtool 2.2.6a |
||
gnu libtool 1.5.16 |
||
gnu libtool 1.5.18 |
||
gnu libtool 1.5.2 |
||
gnu libtool 1.5.4 |
||
gnu libtool 1.5.20 |
||
gnu libtool 1.5.22 |
||
gnu libtool 1.5.6 |
||
gnu libtool 1.5.8 |
||
gnu libtool 1.5.24 |
||
gnu libtool 1.5.26 |