The (1) teamspeak and (2) teamspeak-server scripts in TeamSpeak 2.0.32 place a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
teamspeak teamspeak 2.0.32 |