As in NVD: "Untrusted search path vulnerability in Wireshark 1.4.x before 1.4.9 and 1.6.x before 1.6.2 allows local users to gain privileges via a Trojan horse Lua script in an unspecified directory."
Upstream advisory at: https://www.wireshark.org/security/wnpa-sec-2011-15.html Resolution is in progress in bug 381551.
Stabilization completed in bug 381551. Added to existing GLSA request.
CVE-2011-3360 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3360): Untrusted search path vulnerability in Wireshark 1.4.x before 1.4.9 and 1.6.x before 1.6.2 allows local users to gain privileges via a Trojan horse Lua script in an unspecified directory.
This issue was resolved and addressed in GLSA 201110-02 at http://security.gentoo.org/glsa/glsa-201110-02.xml by GLSA coordinator Alex Legler (a3li).