Unrated severityNVD Advisory· Published Oct 20, 2010· Updated Jun 16, 2026
CVE-2010-3377
CVE-2010-3377
Description
The (1) runSalome, (2) runTestMedCorba, (3) runLightSalome, and (4) hxx2salome scripts in SALOME 5.1.3 place a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory.
Affected products
2- cpe:2.3:a:salome-platform:salome:5.1.3:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
1- bugs.debian.org/cgi-bin/bugreport.cginvdExploit
News mentions
0No linked articles in our index yet.