Privilege Escalation Vulnerability in Qt Creator by The Qt Company
CVE-2010-3374

Currently unrated

Key Information:

Vendor

Nokia
Status
Qt Creator
Vendor
CVE Published:
4 October 2010

What is CVE-2010-3374?

The vulnerability in Qt Creator occurs due to the misconfiguration of the LD_LIBRARY_PATH. Specifically, prior to version 2.0.1, the application allows for a zero-length directory name, which can be exploited by local users to elevate their privileges using a Trojan horse shared library located in the current working directory. Attackers could leverage this flaw to execute arbitrary code with higher privileges, potentially compromising the system's integrity.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.vupen.com/english/advisories/2010/2559
vdb-entryx_refsource_VUPEN
http://www.qt.gitorious.org/qt-creator/qt-creator/commit/...
x_refsource_CONFIRM
http://www.mandriva.com/security/advisories?name=MDVSA-20...
vendor-advisoryx_refsource_MANDRIVA

Timeline

  • Vulnerability Reserved

  • Vulnerability published

JSON
.