Linux-HA OCF Resource Agents 'LD_LIBRARY_PATH' Multiple Local Privilege Escalation Vulnerabilities

Linux-HA OCF Resource Agents is prone to multiple local privilege-escalation vulnerabilities.

An attacker could exploit these issues by enticing an unsuspecting victim to run an application in a directory containing a malicious library file with a specific name. Exploiting these issues allow local attackers to execute arbitrary code with the privileges of the user running the affected application.

Linux-HA OCF Resource Agents 1.0.3 is vulnerable; other versions may also be affected.


Privacy Statement
Copyright 2010, SecurityFocus