Oval Definition:oval:org.mitre.oval:def:11687
Revision Date:2013-04-29Version:13
Title:ltdl.c in libltdl in GNU Libtool 1.5.x, and 2.2.6 before 2.2.6b, as used in Ham Radio Control Libraries and possibly other products, attempts to open a .la file in the current working directory, which allows local users to gain privileges via a Trojan horse file.
Description:ltdl.c in libltdl in GNU Libtool 1.5.x, and 2.2.6 before 2.2.6b, as used in Ham Radio Control Libraries, Q, and possibly other products, attempts to open a .la file in the current working directory, which allows local users to gain privileges via a Trojan horse file.
Family:unixClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2009-3736
Platform(s):CentOS Linux 3
CentOS Linux 4
CentOS Linux 5
Oracle Linux 4
Oracle Linux 5
Red Hat Enterprise Linux 3
Red Hat Enterprise Linux 4
Red Hat Enterprise Linux 5
Product(s):
Definition Synopsis
  • OS Section: RHEL3, CentOS3
  • RHEL3 or CentOS3
  • The operating system installed on the system is Red Hat Enterprise Linux 3
  • OR CentOS Linux 3.x
  • AND Configuration section
  • gcc-ppc32 is earlier than 0:3.2.3-60
  • OR gcc-java is earlier than 0:3.2.3-60
  • OR gcc-g77 is earlier than 0:3.2.3-60
  • OR libgcj is earlier than 0:3.2.3-60
  • OR gcc-c++ is earlier than 0:3.2.3-60
  • OR libobjc is earlier than 0:3.2.3-60
  • OR libstdc++ is earlier than 0:3.2.3-60
  • OR libf2c is earlier than 0:3.2.3-60
  • OR gcc-c++-ppc32 is earlier than 0:3.2.3-60
  • OR gcc-objc is earlier than 0:3.2.3-60
  • OR libgnat is earlier than 0:3.2.3-60
  • OR libtool-libs is earlier than 0:1.4.3-7
  • OR libstdc++-devel is earlier than 0:3.2.3-60
  • OR gcc-gnat is earlier than 0:3.2.3-60
  • OR cpp is earlier than 0:3.2.3-60
  • OR libgcj-devel is earlier than 0:3.2.3-60
  • OR gcc is earlier than 0:3.2.3-60
  • OR libgcc is earlier than 0:3.2.3-60
  • OR libtool is earlier than 0:1.4.3-7
  • OR OS Section: RHEL4, CentOS4, Oracle Linux 4
  • RHEL4, CentOS4 or Oracle Linux 4
  • The operating system installed on the system is Red Hat Enterprise Linux 4
  • OR CentOS Linux 4.x
  • OR Oracle Linux 4.x
  • AND Configuration section
  • gcc-ppc32 is earlier than 0:3.4.6-11.el4_8.1
  • OR gcc4-gfortran is earlier than 0:4.1.2-44.EL4_8.1
  • OR gcc-java is earlier than 0:3.4.6-11.el4_8.1
  • OR gcc-g77 is earlier than 0:3.4.6-11.el4_8.1
  • OR libgcj is earlier than 0:3.4.6-11.el4_8.1
  • OR gcc-c++ is earlier than 0:3.4.6-11.el4_8.1
  • OR libobjc is earlier than 0:3.4.6-11.el4_8.1
  • OR libgomp is earlier than 0:4.1.2-44.EL4_8.1
  • OR libstdc++ is earlier than 0:3.4.6-11.el4_8.1
  • OR libgcj4-src is earlier than 0:4.1.2-44.EL4_8.1
  • OR libmudflap-devel is earlier than 0:4.1.2-44.EL4_8.1
  • OR libf2c is earlier than 0:3.4.6-11.el4_8.1
  • OR gcc-c++-ppc32 is earlier than 0:3.4.6-11.el4_8.1
  • OR gcc-objc is earlier than 0:3.4.6-11.el4_8.1
  • OR gcc4-c++ is earlier than 0:4.1.2-44.EL4_8.1
  • OR libgnat is earlier than 0:3.4.6-11.el4_8.1
  • OR gcc4 is earlier than 0:4.1.2-44.EL4_8.1
  • OR libtool-libs is earlier than 0:1.5.6-5.el4_8
  • OR libgfortran is earlier than 0:4.1.2-44.EL4_8.1
  • OR gcc4-java is earlier than 0:4.1.2-44.EL4_8.1
  • OR libmudflap is earlier than 0:4.1.2-44.EL4_8.1
  • OR libstdc++-devel is earlier than 0:3.4.6-11.el4_8.1
  • OR libgcj4-devel is earlier than 0:4.1.2-44.EL4_8.1
  • OR libgcj-devel is earlier than 0:3.4.6-11.el4_8.1
  • OR gcc-gnat is earlier than 0:3.4.6-11.el4_8.1
  • OR cpp is earlier than 0:3.4.6-11.el4_8.1
  • OR gcc is earlier than 0:3.4.6-11.el4_8.1
  • OR libgcc is earlier than 0:3.4.6-11.el4_8.1
  • OR libtool is earlier than 0:1.5.6-5.el4_8
  • OR libgcj4 is earlier than 0:4.1.2-44.EL4_8.1
  • OR OS Section: RHEL5, CentOS5, Oracle Linux 5
  • RHEL5, CentOS5 or Oracle Linux 5
  • The operating system installed on the system is Red Hat Enterprise Linux 5
  • OR The operating system installed on the system is CentOS Linux 5.x
  • OR Oracle Linux 5.x
  • AND Configuration section
  • libtool-ltdl-devel is earlier than 0:1.5.22-7.el5_4
  • OR gcc-gfortran is earlier than 0:4.1.2-46.el5_4.2
  • OR gcc-java is earlier than 0:4.1.2-46.el5_4.2
  • OR libgcj is earlier than 0:4.1.2-46.el5_4.2
  • OR gcc-c++ is earlier than 0:4.1.2-46.el5_4.2
  • OR libobjc is earlier than 0:4.1.2-46.el5_4.2
  • OR libstdc++ is earlier than 0:4.1.2-46.el5_4.2
  • OR libmudflap-devel is earlier than 0:4.1.2-46.el5_4.2
  • OR gcc-objc is earlier than 0:4.1.2-46.el5_4.2
  • OR libgnat is earlier than 0:4.1.2-46.el5_4.2
  • OR libgcj-src is earlier than 0:4.1.2-46.el5_4.2
  • OR libgfortran is earlier than 0:4.1.2-46.el5_4.2
  • OR libtool-ltdl is earlier than 0:1.5.22-7.el5_4
  • OR libmudflap is earlier than 0:4.1.2-46.el5_4.2
  • OR libstdc++-devel is earlier than 0:4.1.2-46.el5_4.2
  • OR gcc-objc++ is earlier than 0:4.1.2-46.el5_4.2
  • OR gcc-gnat is earlier than 0:4.1.2-46.el5_4.2
  • OR cpp is earlier than 0:4.1.2-46.el5_4.2
  • OR libgcj-devel is earlier than 0:4.1.2-46.el5_4.2
  • OR gcc is earlier than 0:4.1.2-46.el5_4.2
  • OR libgcc is earlier than 0:4.1.2-46.el5_4.2
  • OR libtool is earlier than 0:1.5.22-7.el5_4
    • BACK