cbcvebase.
CVE-2010-3384
published 2010-10-20

CVE-2010-3384: The (1) torcs, (2) nfsperf, (3) accc, (4) texmapper, (5) trackgen, and (6) nfs2ac scripts in TORCS 1.3.1 place a zero-length directory name in the…

PriorityP420medium6.9CVSS 2.0
AVLACMAuNCCICAC
EPSS
0.38%
30.0th percentile
The (1) torcs, (2) nfsperf, (3) accc, (4) texmapper, (5) trackgen, and (6) nfs2ac scripts in TORCS 1.3.1 place a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory.

Affected

6 ranges
VendorProductVersion rangeFixed in
bernhard_wymanntorcs
bernhard_wymanntorcs>= 0 < 1.3.1-51.3.1-5
bernhard_wymanntorcs>= 0 < 1.3.1-51.3.1-5
bernhard_wymanntorcs>= 0 < 1.3.1-51.3.1-5
bernhard_wymanntorcs>= 0 < 1.3.1-51.3.1-5
debiantorcs< torcs 1.3.1-5 (bookworm)torcs 1.3.1-5 (bookworm)

CVSS provenance

nvdv2.06.9MEDIUMAV:L/AC:M/Au:N/C:C/I:C/A:C
osv6.9MEDIUM
vendor_debian6.9MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.