Wind River Support Network

HomeDefectsLIN6-5376
Not to be fixed

LIN6-5376 : Security Advisory - gdb - CVE-2011-4355

Created: Mar 18, 2013    Updated: Mar 5, 2016
Resolved Date: Jun 16, 2014
Previous ID: LIN3-26117
Found In Version: 6.0
Severity: Standard
Applicable for: Wind River Linux 6

Description

GNU Project Debugger (GDB) before 7.5, when .debug_gdb_scripts is defined, automatically loads certain files from the current working directory, which allows local users to gain privileges via crafted files such as Python scripts.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-4355

Workaround

Unknown

Steps to Reproduce

Unknown
Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube