16 matches found
Linux Distros Unpatched Vulnerability : CVE-2011-4355
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GNU Project Debugger GDB before 7.5, when .debuggdbscripts is defined, automatically loads certain files from the current working directory, which allows local...
RHEL 5 : gdb (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - gdb: object file .debuggdbscripts section improper input validation CVE-2011-4355 - gdb: Malformed sectio...
SUSE CVE-2011-4355
GNU Project Debugger GDB before 7.5, when .debuggdbscripts is defined, automatically loads certain files from the current working directory, which allows local users to gain privileges via crafted files such as Python scripts...
RHEL 6 : rhev-hypervisor6 (RHSA-2013:0579)
The remote Redhat Enterprise Linux 6 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2013:0579 advisory. The rhev-hypervisor6 package provides a Red Hat Enterprise Virtualization Hypervisor ISO disk image. The Red Hat Enterprise Virtualization...
Amazon Linux AMI : gdb (ALAS-2013-159)
GDB tried to auto-load certain files such as GDB scripts, Python scripts, and a thread debugging library from the current working directory when debugging programs. This could result in the execution of arbitrary code with the user's privileges when GDB was run in a directory that has untrusted...
Oracle Linux 6 : gdb (ELSA-2013-0522)
The remote Oracle Linux 6 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2013-0522 advisory. - Fix CVE-2011-4355 gdb: arbitrary code execution via .debuggdbscripts' Jan Kratochvil, RH BZ 756116. Tenable has extracted the preceding description block...
CentOS Update for gdb CESA-2013:0522 centos6
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scripttagname:"affected", value:"gdb...
CVE-2011-4355
GNU Project Debugger GDB before 7.5, when .debuggdbscripts is defined, automatically loads certain files from the current working directory, which allows local users to gain privileges via crafted files such as Python scripts...
CVE-2011-4355
GNU Project Debugger GDB before 7.5, when .debuggdbscripts is defined, automatically loads certain files from the current working directory, which allows local users to gain privileges via crafted files such as Python scripts...
UBUNTU-CVE-2011-4355
GNU Project Debugger GDB before 7.5, when .debuggdbscripts is defined, automatically loads certain files from the current working directory, which allows local users to gain privileges via crafted files such as Python scripts...
CVE-2011-4355
The provided documents describe CVE-2011-4355: GDB up to version 7.4.x (before 7.5) defines .debug_gdb_scripts and automatically loads files from the current working directory, enabling a local attacker to execute crafted files (e.g., Python scripts) and gain privileges. The vulnerability impact ...
CVE-2011-4355
GNU Project Debugger GDB before 7.5, when .debuggdbscripts is defined, automatically loads certain files from the current working directory, which allows local users to gain privileges via crafted files such as Python scripts...
CVE-2011-4355
GNU Project Debugger GDB before 7.5, when .debuggdbscripts is defined, automatically loads certain files from the current working directory, which allows local users to gain privileges via crafted files such as Python scripts...
Medium: gdb
Issue Overview: GDB tried to auto-load certain files such as GDB scripts, Python scripts, and a thread debugging library from the current working directory when debugging programs. This could result in the execution of arbitrary code with the user's privileges when GDB was run in a directory that...
RHEL 6 : gdb (RHSA-2013:0522)
Updated gdb packages that fix one security issue and three bugs are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...
Linux GNU Debugger "debug_gdb_scripts"加载任意代码执行漏洞
BUGTRAQ ID: 50829 CVE ID: CVE-2011-4355 Linux是自由电脑操作系统内核,Linux所带的GNU Debugger gdb工具实现上存在漏洞,在定义了.debuggdbscripts后,gdb会从当前目录加载可疑文件,造成以当前用户权限执行任意代码。 Linux kernel 2.6.x 厂商补丁: Linux ----- 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本: http://www.kernel.org/...