Piotr Roszatycki : Security Vulnerabilities, CVEs,
The Free Software Foundation (FSF) Berkeley DB NSS module (aka libnss-db) 2.2.3pre1 reads the DB_CONFIG file in the current working directory, which allows local users to obtain sensitive information via a symlink attack involving a setgid or setuid application that uses this module.
Max CVSS
1.9
EPSS Score
0.04%
Published
2010-04-05
Updated
2017-09-19
1 vulnerabilities found