Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-1704

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-2005-1704
Last Modified 07 Mar 2011 12:00:00
Published 24 May 2005 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2005-1704

Summary

Integer overflow in the Binary File Descriptor (BFD) library for gdb before 6.3, binutils, elfutils, and possibly other packages, allows user-assisted attackers to execute arbitrary code via a crafted object file that specifies a large number of section headers, leading to a heap-based buffer overflow.

Vulnerable Systems

Application

  • Gnu Gdb 6.3


References

VUPEN - ADV-2007-1267

CONFIRM - http://www.vmware.com/support/vi3/doc/esx-55052-patch.html

UBUNTU - USN-136-1

TRUSTIX - 2005-0025

BID - 13697

BUGTRAQ - 20070404 VMSA-2007-0003 VMware ESX 3.0.1 and 3.0.0 server security updates

REDHAT - RHSA-2006:0368

REDHAT - RHSA-2006:0354

REDHAT - RHSA-2005:801

REDHAT - RHSA-2005:763

REDHAT - RHSA-2005:709

REDHAT - RHSA-2005:673

REDHAT - RHSA-2005:659

OSVDB - 16757

MANDRAKE - MDKSA-2005:215

MANDRAKE - MDKSA-2005:095

GENTOO - GLSA-200506-01

CONFIRM - http://support.avaya.com/elmodocs2/security/ASA-2006-178.htm

SECUNIA - 18506

CONFIRM - http://support.avaya.com/elmodocs2/security/ASA-2005-222.pdf

SECTRACK - 1016544

GENTOO - GLSA-200505-15

SECUNIA - 24788

SECUNIA - 21717

SECUNIA - 21262

SECUNIA - 21122

SECUNIA - 17718

SECUNIA - 17356

SECUNIA - 17257

SECUNIA - 17135

SECUNIA - 17072

SECUNIA - 17001

SECUNIA - 15527

CONECTIVA - CLA-2006:1060

CONFIRM - http://bugs.gentoo.org/show_bug.cgi?id=91398

SGI - 20060703-01-P


Last Updated: 27 May 2016 10:40:16