FKIE_CVE-2010-3999

Vulnerability from fkie_nvd - Published: 2010-11-05 17:00 - Updated: 2025-04-11 00:51
Severity ?
Summary
gnc-test-env in GnuCash 2.3.15 and earlier places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory.
References
cve@mitre.orghttp://lists.fedoraproject.org/pipermail/package-announce/2010-November/050269.html
cve@mitre.orghttp://lists.fedoraproject.org/pipermail/package-announce/2010-October/050164.html
cve@mitre.orghttp://lists.fedoraproject.org/pipermail/package-announce/2010-October/050177.html
cve@mitre.orghttp://secunia.com/advisories/42048
cve@mitre.orghttp://secunia.com/advisories/42054
cve@mitre.orghttp://www.mandriva.com/security/advisories?name=MDVSA-2010:241
cve@mitre.orghttp://www.securityfocus.com/bid/44563
cve@mitre.orghttp://www.vupen.com/english/advisories/2010/2848
cve@mitre.orghttp://www.vupen.com/english/advisories/2010/2898
cve@mitre.orghttp://www.vupen.com/english/advisories/2010/3060
cve@mitre.orghttps://bugzilla.redhat.com/show_bug.cgi?id=644933
af854a3a-2127-422b-91ae-364da2661108http://lists.fedoraproject.org/pipermail/package-announce/2010-November/050269.html
af854a3a-2127-422b-91ae-364da2661108http://lists.fedoraproject.org/pipermail/package-announce/2010-October/050164.html
af854a3a-2127-422b-91ae-364da2661108http://lists.fedoraproject.org/pipermail/package-announce/2010-October/050177.html
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/42048
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/42054
af854a3a-2127-422b-91ae-364da2661108http://www.mandriva.com/security/advisories?name=MDVSA-2010:241
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/44563
af854a3a-2127-422b-91ae-364da2661108http://www.vupen.com/english/advisories/2010/2848
af854a3a-2127-422b-91ae-364da2661108http://www.vupen.com/english/advisories/2010/2898
af854a3a-2127-422b-91ae-364da2661108http://www.vupen.com/english/advisories/2010/3060
af854a3a-2127-422b-91ae-364da2661108https://bugzilla.redhat.com/show_bug.cgi?id=644933
Impacted products
Vendor Product Version
gnucash gnucash *
gnucash gnucash 1.8.3
gnucash gnucash 1.8.4
gnucash gnucash 1.8.5
gnucash gnucash 2.0.0
gnucash gnucash 2.0.1
gnucash gnucash 2.2.0
gnucash gnucash 2.2.1
gnucash gnucash 2.2.2
gnucash gnucash 2.2.3
gnucash gnucash 2.2.4
gnucash gnucash 2.2.5
gnucash gnucash 2.2.6
gnucash gnucash 2.2.7
gnucash gnucash 2.2.8
gnucash gnucash 2.2.9
gnucash gnucash 2.3.0
gnucash gnucash 2.3.1
gnucash gnucash 2.3.2
gnucash gnucash 2.3.3
gnucash gnucash 2.3.4
gnucash gnucash 2.3.5
gnucash gnucash 2.3.6
gnucash gnucash 2.3.7
gnucash gnucash 2.3.8
gnucash gnucash 2.3.9
gnucash gnucash 2.3.10
gnucash gnucash 2.3.11
gnucash gnucash 2.3.12
gnucash gnucash 2.3.13
gnucash gnucash 2.3.14
To clipboard Create KEV Entry 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:gnucash:gnucash:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "F1D6D14F-A018-45D3-9AE6-7E02D6ADCE1B",
              "versionEndIncluding": "2.3.15",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnucash:gnucash:1.8.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "F1BDE9B0-BB1B-4258-B140-2709E160955B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnucash:gnucash:1.8.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "9F7D1B89-CBD3-4318-AA96-FD747CBC03DE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnucash:gnucash:1.8.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "F8091AD8-CFAB-44AA-811C-B7BF5E0D3329",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnucash:gnucash:2.0.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "65D92610-A868-4462-99E1-48139C6FDE2D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnucash:gnucash:2.0.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "D8AF0681-432D-43D7-B34C-04704CCF5C07",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnucash:gnucash:2.2.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "AC480EFF-D948-4800-9020-9CF07DAE9964",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnucash:gnucash:2.2.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "28182F8F-BCE5-4414-9D5C-D56024A6B686",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnucash:gnucash:2.2.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "B66516FD-4E0E-43B9-8C8E-B2B76573D20D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnucash:gnucash:2.2.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "565353FD-6AA0-4713-ABBE-9E98632CEE95",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnucash:gnucash:2.2.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "2D488972-13A0-4C8C-82BD-7CD4BEADEE68",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnucash:gnucash:2.2.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "FD22A61D-12C6-421A-9B2F-138B4828DDCD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnucash:gnucash:2.2.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "004AEB66-400B-4E08-AF9D-C05F882DD5AA",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnucash:gnucash:2.2.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "0781F84C-24C6-4864-9B8F-14F99CEF9C2A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnucash:gnucash:2.2.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "D3CBAC22-9F26-4ED7-9D56-EAD9243BF01E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnucash:gnucash:2.2.9:*:*:*:*:*:*:*",
              "matchCriteriaId": "E7A4EAC7-6E54-47FD-AABB-86369C3434FB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnucash:gnucash:2.3.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "48137FBC-8842-408E-BE6F-379C289FB85E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnucash:gnucash:2.3.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "79BBEA22-AC10-47EF-82F8-A3D0A73DF69B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnucash:gnucash:2.3.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "E576E55F-9303-4053-9AE9-72BE8586669D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnucash:gnucash:2.3.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "9C348E72-E006-4878-AB56-B889C6D91143",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnucash:gnucash:2.3.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "C8CAB9F2-5A09-453A-99CB-B31F6521C9D8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnucash:gnucash:2.3.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "8D028207-97BE-4EF2-9C85-3E634564CDF1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnucash:gnucash:2.3.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "66567CBE-8E92-4891-A0D6-76AFC95BBF20",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnucash:gnucash:2.3.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "78495FA0-5B84-4B69-A409-5C854C789D7C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnucash:gnucash:2.3.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "01D09D8C-B7F0-436E-8CBC-446C9582542C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnucash:gnucash:2.3.9:*:*:*:*:*:*:*",
              "matchCriteriaId": "B7C12B10-9770-48E3-9B09-62A796DD7F35",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnucash:gnucash:2.3.10:*:*:*:*:*:*:*",
              "matchCriteriaId": "E27835D1-3AD4-4B55-A288-057B64F5E9B8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnucash:gnucash:2.3.11:*:*:*:*:*:*:*",
              "matchCriteriaId": "F796C5C7-CF42-4A5A-844A-C6F4FF8F47CD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnucash:gnucash:2.3.12:*:*:*:*:*:*:*",
              "matchCriteriaId": "FEB59AAE-C586-406D-9101-745F4A3B5125",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnucash:gnucash:2.3.13:*:*:*:*:*:*:*",
              "matchCriteriaId": "263D8F82-055C-476C-9B36-3881D925FD5D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnucash:gnucash:2.3.14:*:*:*:*:*:*:*",
              "matchCriteriaId": "9C1C0E97-690A-4995-B44E-0491AB43DE99",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "gnc-test-env in GnuCash 2.3.15 and earlier places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory."
    },
    {
      "lang": "es",
      "value": "gnc-test-env en GnuCash v2.3.15 y anteriores, crea un nombre de directorio de longitud cero en LD_LIBRARY_PATH, lo que permite a usuarios locales aumentar sus privilegios a trav\u00e9s de una biblioteca compartida que contenga un Troyano en el directorio de trabajo actual."
    }
  ],
  "id": "CVE-2010-3999",
  "lastModified": "2025-04-11T00:51:21.963",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "LOCAL",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 6.9,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "COMPLETE",
          "vectorString": "AV:L/AC:M/Au:N/C:C/I:C/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 3.4,
        "impactScore": 10.0,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": true
      }
    ]
  },
  "published": "2010-11-05T17:00:03.077",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-November/050269.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-October/050164.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-October/050177.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/42048"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/42054"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:241"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/bid/44563"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.vupen.com/english/advisories/2010/2848"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.vupen.com/english/advisories/2010/2898"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.vupen.com/english/advisories/2010/3060"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=644933"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-November/050269.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-October/050164.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-October/050177.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/42048"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/42054"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:241"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/44563"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2010/2848"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2010/2898"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2010/3060"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=644933"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-Other"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.