CVE-2010-3372

Untrusted search path vulnerability in NorduGrid Advanced Resource Connector (ARC) before 0.8.3 allows local users to gain privileges via vectors related to the LD_LIBRARY_PATH environment variable.  NOTE: some of these details are obtained from third party information.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.9 UNKNOWN
LOCAL
MEDIUM
AV:L/AC:M/Au:N/C:C/I:C/A:C
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 17%
VendorProductVersion
nordugridnordugrid-arc
𝑥
≤ 0.8.2
nordugridnordugrid-arc
0.3.22
nordugridnordugrid-arc
0.3.23
nordugridnordugrid-arc
0.3.24
nordugridnordugrid-arc
0.3.25
nordugridnordugrid-arc
0.3.26
nordugridnordugrid-arc
0.3.27
nordugridnordugrid-arc
0.3.28
nordugridnordugrid-arc
0.3.29
nordugridnordugrid-arc
0.3.30
nordugridnordugrid-arc
0.3.31
nordugridnordugrid-arc
0.3.32
nordugridnordugrid-arc
0.3.33
nordugridnordugrid-arc
0.3.34
nordugridnordugrid-arc
0.3.35
nordugridnordugrid-arc
0.3.36
nordugridnordugrid-arc
0.3.37
nordugridnordugrid-arc
0.3.38
nordugridnordugrid-arc
0.3.39
nordugridnordugrid-arc
0.3.40
nordugridnordugrid-arc
0.4.0
nordugridnordugrid-arc
0.4.1
nordugridnordugrid-arc
0.4.2
nordugridnordugrid-arc
0.4.3
nordugridnordugrid-arc
0.4.4
nordugridnordugrid-arc
0.4.5
nordugridnordugrid-arc
0.5.0
nordugridnordugrid-arc
0.5.1
nordugridnordugrid-arc
0.5.2
nordugridnordugrid-arc
0.5.3
nordugridnordugrid-arc
0.5.4
nordugridnordugrid-arc
0.5.5
nordugridnordugrid-arc
0.5.6
nordugridnordugrid-arc
0.5.7
nordugridnordugrid-arc
0.5.8
nordugridnordugrid-arc
0.5.9
nordugridnordugrid-arc
0.5.10
nordugridnordugrid-arc
0.5.11
nordugridnordugrid-arc
0.5.12
nordugridnordugrid-arc
0.5.13
nordugridnordugrid-arc
0.5.14
nordugridnordugrid-arc
0.5.15
nordugridnordugrid-arc
0.5.16
nordugridnordugrid-arc
0.5.17
nordugridnordugrid-arc
0.5.18
nordugridnordugrid-arc
0.5.19
nordugridnordugrid-arc
0.5.20
nordugridnordugrid-arc
0.5.21
nordugridnordugrid-arc
0.5.22
nordugridnordugrid-arc
0.5.23
nordugridnordugrid-arc
0.5.24
nordugridnordugrid-arc
0.5.25
nordugridnordugrid-arc
0.5.26
nordugridnordugrid-arc
0.5.27
nordugridnordugrid-arc
0.5.28
nordugridnordugrid-arc
0.5.29
nordugridnordugrid-arc
0.5.30
nordugridnordugrid-arc
0.5.31
nordugridnordugrid-arc
0.5.32
nordugridnordugrid-arc
0.5.33
nordugridnordugrid-arc
0.5.34
nordugridnordugrid-arc
0.5.35
nordugridnordugrid-arc
0.5.36
nordugridnordugrid-arc
0.5.37
nordugridnordugrid-arc
0.5.38
nordugridnordugrid-arc
0.5.39
nordugridnordugrid-arc
0.5.40
nordugridnordugrid-arc
0.5.41
nordugridnordugrid-arc
0.5.42
nordugridnordugrid-arc
0.5.43
nordugridnordugrid-arc
0.5.44
nordugridnordugrid-arc
0.5.45
nordugridnordugrid-arc
0.5.46
nordugridnordugrid-arc
0.5.47
nordugridnordugrid-arc
0.5.48
nordugridnordugrid-arc
0.5.49
nordugridnordugrid-arc
0.5.50
nordugridnordugrid-arc
0.5.51
nordugridnordugrid-arc
0.5.52
nordugridnordugrid-arc
0.5.53
nordugridnordugrid-arc
0.5.54
nordugridnordugrid-arc
0.5.55
nordugridnordugrid-arc
0.5.56
nordugridnordugrid-arc
0.5.57
nordugridnordugrid-arc
0.5.58
nordugridnordugrid-arc
0.6.0
nordugridnordugrid-arc
0.6.1
nordugridnordugrid-arc
0.6.2
nordugridnordugrid-arc
0.6.3
nordugridnordugrid-arc
0.6.4
nordugridnordugrid-arc
0.6.5
nordugridnordugrid-arc
0.8.1
nordugridnordugrid-arc
0.8.1.1
nordugridnordugrid-arc
0.8.1.1-1
nordugridnordugrid-arc
0.8.1.1-2
nordugridnordugrid-arc
0.8.2.1
nordugridnordugrid-arc
0.8.2.2
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
nordugrid-arc-nox
saucy
dne
raring
dne
quantal
dne
precise
dne
oneiric
dne
natty
not-affected
maverick
ignored
lucid
ignored
karmic
dne
hardy
dne
dapper
dne
References
http://secunia.com/advisories/42496
http://www.nordugrid.org/arc/releases/0_8_3/release_notes_0_8_3.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/64434
http://secunia.com/advisories/42496
http://www.nordugrid.org/arc/releases/0_8_3/release_notes_0_8_3.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/64434