Unrated severityNVD Advisory· Published Oct 20, 2010· Updated Jun 16, 2026
CVE-2010-3393
CVE-2010-3393
Description
magics-config in Magics++ 2.10.0 places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory.
Affected products
2- cpe:2.3:a:ecmwf:magics\+\+:2.10.0:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
1- bugs.debian.org/cgi-bin/bugreport.cginvdExploitPatch
News mentions
0No linked articles in our index yet.