Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntuUbuntuUSN-135-1
HistoryMay 27, 2005 - 12:00 a.m.

gdb vulnerabilities

2005-05-2700:00:00
ubuntu.com
29

9.7 High

AI Score

Confidence

High

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

48.9%

JSON

Releases

  • Ubuntu 5.04
  • Ubuntu 4.10

Details

Tavis Ormandy found an integer overflow in the GNU debugger. By
tricking an user into merely load a specially crafted executable, an
attacker could exploit this to execute arbitrary code with the
privileges of the user running gdb. However, loading untrusted
binaries without actually executing them is rather uncommon, so the
risk of this flaw is low. (CAN-2005-1704)

Tavis Ormandy also discovered that gdb loads and executes the file
“.gdbinit” in the current directory even if the file belongs to a
different user. By tricking an user into run gdb in a directory with a
malicious .gdbinit file, a local attacker could exploit this to run
arbitrary commands with the privileges of the user invoking gdb.
(CAN-2005-1705)

OSVersionArchitecturePackageVersionFilename
Ubuntu5.04noarchgdb< *UNKNOWN
Ubuntu4.10noarchgdb< *UNKNOWN

Related

nessus 22
redhat 7
openvas 4
gentoo 2
centos 7
cve 2
ubuntu 1
ubuntucve 2
debiancve 2
photon 2
nessus
nessus
Fedora Core 4 : gdb-6.3.0.0-1.84 (2005-1033)
2005-10-28 00:00:00
GLSA-200505-15 : gdb: Multiple vulnerabilities
2005-05-28 00:00:00
RHEL 2.1 : gdb (RHSA-2005:801)
2005-10-19 00:00:00
redhat
redhat
(RHSA-2005:801) gdb security update
2005-10-18 00:00:00
(RHSA-2005:709) gdb security update
2005-10-05 00:00:00
(RHSA-2006:0354) elfutils security update
2006-08-10 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200505-15 (gdb)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200505-15 (gdb)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200506-01 (binutils)
2008-09-24 00:00:00
gentoo
gentoo
gdb: Multiple vulnerabilities
2005-05-20 00:00:00
Binutils, elfutils: Buffer overflow
2005-06-01 00:00:00
centos
centos
gdb security update
2005-10-05 16:20:15
gdb security update
2005-10-18 23:35:22
binutils security update
2005-10-12 00:30:41
cve
cve
CVE-2005-1704
2005-05-24 04:00:00
CVE-2005-1705
2005-05-24 04:00:00
ubuntu
ubuntu
binutils vulnerability
2005-05-27 00:00:00
ubuntucve
ubuntucve
CVE-2005-1704
2005-05-24 00:00:00
CVE-2005-1705
2005-05-24 00:00:00
debiancve
debiancve
CVE-2005-1704
2005-05-24 04:00:00
CVE-2005-1705
2005-05-24 04:00:00
photon
photon
Critical Photon OS Security Update - PHSA-2023-4.0-0414
2023-06-20 00:00:00
Critical Photon OS Security Update - PHSA-2023-3.0-0601
2023-06-20 00:00:00

9.7 High

AI Score

Confidence

High

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

48.9%

JSON
Related for USN-135-1
nessus22redhat7openvas4gentoo2centos7cve2ubuntu1ubuntucve2debiancve2photon2