CVE-2005-1705
EPSS 0.06%
Description
gdb before 6.3 searches the current working directory to load the .gdbinit configuration file, which allows local users to execute arbitrary commands as the user running gdb.
How to fix CVE-2005-1705
To remediate CVE-2005-1705, upgrade the affected package to a fixed version below.
- Debian/gdb—upgrade to 6.3-6 or later
Is CVE-2005-1705 being exploited?
Low — EPSS is 0.1%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 6.3-6