National Vulnerability Database

National Vulnerability Database

National Vulnerability
Database

Search Results (Refine Search)

Search Parameters:
  • Contains Software Flaws (CVE)
  • CPE Product Version: cpe:/a:henner_zeller:henplus:0.9.7
There are 1 matching records.
Vuln ID Summary CVSS Severity
CVE-2010-3358

HenPlus JDBC SQL-Shell 0.9.7 places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory.

Published: October 20, 2010; 02:00:03 PM -04:00
V2: 6.9 MEDIUM