CVE-2005-4791 | HackTesting

Multiple untrusted search path vulnerabilities in SUSE Linux 10.0 cause the working directory to be added to LD_LIBRARY_PATH, which might allow local users to execute arbitrary code via (1) liferea or (2) banshee.

References

http://osvdb.org/39580

http://www.securityfocus.com/bid/15040

http://secunia.com/advisories/27771

http://sourceforge.net/project/shownotes.php?release_id=555823&group_id=87005

http://www.novell.com/linux/security/advisories/2005_22_sr.html

http://www.vupen.com/english/advisories/2007/3965