VYPR
Unrated severityNVD Advisory· Published Nov 29, 2009· Updated Jun 16, 2026

CVE-2009-3736

CVE-2009-3736

Description

ltdl.c in libltdl in GNU Libtool 1.5.x, and 2.2.6 before 2.2.6b, as used in Ham Radio Control Libraries, Q, and possibly other products, attempts to open a .la file in the current working directory, which allows local users to gain privileges via a Trojan horse file.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

17
  • GNU/Libtool16 versions
    cpe:2.3:a:gnu:libtool:1.5:*:*:*:*:*:*:*+ 15 more
    • cpe:2.3:a:gnu:libtool:1.5:*:*:*:*:*:*:*
    • cpe:2.3:a:gnu:libtool:1.5.10:*:*:*:*:*:*:*
    • cpe:2.3:a:gnu:libtool:1.5.12:*:*:*:*:*:*:*
    • cpe:2.3:a:gnu:libtool:1.5.14:*:*:*:*:*:*:*
    • cpe:2.3:a:gnu:libtool:1.5.16:*:*:*:*:*:*:*
    • cpe:2.3:a:gnu:libtool:1.5.18:*:*:*:*:*:*:*
    • cpe:2.3:a:gnu:libtool:1.5.2:*:*:*:*:*:*:*
    • cpe:2.3:a:gnu:libtool:1.5.20:*:*:*:*:*:*:*
    • cpe:2.3:a:gnu:libtool:1.5.22:*:*:*:*:*:*:*
    • cpe:2.3:a:gnu:libtool:1.5.24:*:*:*:*:*:*:*
    • cpe:2.3:a:gnu:libtool:1.5.26:*:*:*:*:*:*:*
    • cpe:2.3:a:gnu:libtool:1.5.4:*:*:*:*:*:*:*
    • cpe:2.3:a:gnu:libtool:1.5.6:*:*:*:*:*:*:*
    • cpe:2.3:a:gnu:libtool:1.5.8:*:*:*:*:*:*:*
    • cpe:2.3:a:gnu:libtool:2.2.6a:*:*:*:*:*:*:*
    • (no CPE)range: 1.5.x, >=2.2.6 <2.2.6b

Patches

Vulnerability mechanics

References

38

News mentions

0

No linked articles in our index yet.