CVE-2005-1705

9 documents8 sources

Severity

7.2HIGH

EPSS

0.1%

top 82.15%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

GNU GDB

Timeline

PublishedMay 24

Latest updateMay 1

Description

gdb before 6.3 searches the current working directory to load the .gdbinit configuration file, which allows local users to execute arbitrary commands as the user running gdb.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages2 packages

▶Debiangdb< 6.3-6+3

▶NVDgnu/gdb6.3

Patches

Patch: secunia.com ↗Patch: www.mandriva.com ↗Patch: www.redhat.com ↗

🔴Vulnerability Details

GHSA

GHSA-5jcm-wwpx-vpr3: gdb before 6↗2022-05-01

▶

OSV

CVE-2005-1705: gdb before 6↗2005-05-24

▶

CVEList

CVE-2005-1705: gdb before 6↗2005-05-24

▶

📋Vendor Advisories

Ubuntu

gdb vulnerabilities↗2005-05-27

▶

Red Hat

security flaw↗2005-05-25

▶

Debian

CVE-2005-1705: gdb - gdb before 6.3 searches the current working directory to load the .gdbinit confi...↗2005

▶

💬Community

Bugzilla

CVE-2005-1705 security flaw↗2018-08-16

▶