Uim

Uim

2 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.6

CVE-2005-3149

  • EPSS 0.1%
  • Published 05.10.2005 22:02:00
  • Last modified 03.04.2025 01:03:51

Uim 0.4.x before 0.4.9.1 and 0.5.0 and earlier does not properly handle the LIBUIM_VANILLA environment variable when a suid or sgid application is linked to libuim, such as immodule for Qt, which allows local users to gain privileges.

4.6

CVE-2005-0503

  • EPSS 0.07%
  • Published 21.02.2005 05:00:00
  • Last modified 03.04.2025 01:03:51

uim before 0.4.5.1 trusts certain environment variables when libUIM is used in setuid or setgid applications, which allows local users to gain privileges.