CVE-2005-3149

CVE-2005-3149 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

Uim 0.4.x before 0.4.9.1 and 0.5.0 and earlier does not properly handle the LIBUIM_VANILLA environment variable when a suid or sgid application is linked to libuim, such as immodule for Qt, which allows local users to gain privileges.

Learn more about our User Device Pen Test.