SCO Information for VU#686403
ld.so fails to unset LD_PRELOAD before executing suid root programs
- Vendor Information Help Date Notified: 08 Sep 2000
- Statement Date:
- Date Updated: 15 May 2001
SCO OpenServer Release 5 and UnixWare 7 systems are not
vulnerable to this exploit. The static and dynamic loaders
in SCO products do not use LD_PRELOAD.
The vendor has not provided us with any further information regarding this vulnerability.
The CERT/CC has no additional comments at this time.