High

CVE-2005-4442 - Unspecified vulnerability in Openldap

Publication: 2005-12-21
Summary

Untrusted search path vulnerability in OpenLDAP before 2.2.28-r3 on Gentoo Linux allows local users in the portage group to gain privileges via a malicious shared object in the Portage temporary build directory, which is part of the RUNPATH.

Risk level (CVSS 7.2)

High

7.2

Access Vector

  • Network
  • Adjacent Network
  • Local

Access Complexity

  • Low
  • Medium
  • High

Authentication

  • None
  • Single
  • Multiple

Confident. Impact

  • Complete
  • Partial
  • None

Integrity Impact

  • Complete
  • Partial
  • None

Affected Products

  • Openldap Openldap 2.0.0
  • Openldap Openldap 2.2.28_r2
  • Openldap Openldap 2.0.2
  • Openldap Openldap 2.0.3
  • Openldap Openldap 2.0.4
  • Openldap Openldap 2.0.5
  • Openldap Openldap 2.0.6
  • Openldap Openldap 2.0.7
  • Openldap Openldap 2.0.8
  • Openldap Openldap 2.0.9
  • Openldap Openldap 2.0.10
  • Openldap Openldap 2.0.11
  • Openldap Openldap 2.0.12
  • Openldap Openldap 2.0.13
  • Openldap Openldap 2.0.14
  • Openldap Openldap 2.0.15
  • Openldap Openldap 2.0.16
  • Openldap Openldap 2.0.17
  • Openldap Openldap 2.0.18
  • Openldap Openldap 2.0.19
  • Openldap Openldap 2.0.20
  • Openldap Openldap 2.0.21
  • Openldap Openldap 2.0.22
  • Openldap Openldap 2.0.23
  • Openldap Openldap 2.0.24
  • Openldap Openldap 2.0.25
  • Openldap Openldap 2.0.26
  • Openldap Openldap 2.0.27
  • Openldap Openldap 2.1.2
  • Openldap Openldap 2.1.3
  • Openldap Openldap 2.1.4
  • Openldap Openldap 2.1.5
  • Openldap Openldap 2.1.6
  • Openldap Openldap 2.1.7
  • Openldap Openldap 2.1.8
  • Openldap Openldap 2.1.9
  • Openldap Openldap 2.1.10
  • Openldap Openldap 2.1.11
  • Openldap Openldap 2.1.12
  • Openldap Openldap 2.1.13
  • Openldap Openldap 2.1.14
  • Openldap Openldap 2.0.1
  • Openldap Openldap 2.1.16
  • Openldap Openldap 2.1.17
  • Openldap Openldap 2.1.18
  • Openldap Openldap 2.1.19
  • Openldap Openldap 2.1.20
  • Openldap Openldap 2.1.21
  • Openldap Openldap 2.1.22
  • Openldap Openldap 2.1.23
  • Openldap Openldap 2.1.24
  • Openldap Openldap 2.1.25
  • Openldap Openldap 2.1.26
  • Openldap Openldap 2.1.27
  • Openldap Openldap 2.1.28
  • Openldap Openldap 2.1.29
  • Openldap Openldap 2.1.30
  • Openldap Openldap 2.2.4
  • Openldap Openldap 2.2.5
  • Openldap Openldap 2.2.6
  • Openldap Openldap 2.2.7
  • Openldap Openldap 2.2.8
  • Openldap Openldap 2.2.9
  • Openldap Openldap 2.2.10
  • Openldap Openldap 2.2.11
  • Openldap Openldap 2.2.12
  • Openldap Openldap 2.2.13
  • Openldap Openldap 2.2.14
  • Openldap Openldap 2.2.15
  • Openldap Openldap 2.2.16
  • Openldap Openldap 2.2.17
  • Openldap Openldap 2.2.18
  • Openldap Openldap 2.2.19
  • Openldap Openldap 2.2.20
  • Openldap Openldap 2.2.21
  • Openldap Openldap 2.2.22
  • Openldap Openldap 2.2.23
  • Openldap Openldap 2.2.24
  • Openldap Openldap 2.2.25
  • Openldap Openldap 2.2.26
  • Openldap Openldap 2.2.27
  • Openldap Openldap 2.1.15