Moole Vulnerability Database

Find real vulnerabilities before they ship

Unknown

CVE-2005-1705

gdb before 6.3 searches the current working directory to load the .gdbinit configuration file, which allows local users to execute arbitrary commands as the user running gdb.

PublishedMay 24, 2005, 04:00

Published Bycve@mitre.org

Affected Versions

No affected versions found.

References

http://bugs.gentoo.org/show_bug.cgi?id=88398
http://secunia.com/advisories/17072
http://secunia.com/advisories/17356
http://secunia.com/advisories/18506
http://security.gentoo.org/glsa/glsa-200505-15.xml
http://support.avaya.com/elmodocs2/security/ASA-2006-015.htm
http://www.mandriva.com/security/advisories?name=MDKSA-2005:095
http://www.redhat.com/support/errata/RHSA-2005-709.html
http://www.redhat.com/support/errata/RHSA-2005-801.html
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11072

Weakness Type

NVD-CWE-Other

CVSS Metrics

Base Score

7.2

Vector String

AV:L/AC:L/Au:N/C:C/I:C/A:C

Base SeverityUnknown

Version

2.0

Attack Vector (AV)