{ "CVE_data_meta" : { "ASSIGNER" : "cve@mitre.org", "ID" : "CVE-2011-4355", "STATE" : "PUBLIC" }, "affects" : { "vendor" : { "vendor_data" : [ { "product" : { "product_data" : [ { "product_name" : "n/a", "version" : { "version_data" : [ { "version_value" : "n/a" } ] } } ] }, "vendor_name" : "n/a" } ] } }, "data_format" : "MITRE", "data_type" : "CVE", "data_version" : "4.0", "description" : { "description_data" : [ { "lang" : "eng", "value" : "GNU Project Debugger (GDB) before 7.5, when .debug_gdb_scripts is defined, automatically loads certain files from the current working directory, which allows local users to gain privileges via crafted files such as Python scripts." } ] }, "problemtype" : { "problemtype_data" : [ { "description" : [ { "lang" : "eng", "value" : "n/a" } ] } ] }, "references" : { "reference_data" : [ { "name" : "[gdb-patches] 20110429 Re: [RFA] Add $pdir as entry for libthread-db-search-path.", "refsource" : "MLIST", "url" : "http://sourceware.org/ml/gdb-patches/2011-04/msg00559.html" }, { "name" : "[gdb-patches] 20110506 Re: [RFA] Add $pdir as entry for libthread-db-search-path.", "refsource" : "MLIST", "url" : "http://sourceware.org/ml/gdb-patches/2011-05/msg00202.html" }, { "name" : "http://sourceware.org/cgi-bin/cvsweb.cgi/~checkout~/src/gdb/NEWS?content-type=text/x-cvsweb-markup&cvsroot=src", "refsource" : "CONFIRM", "url" : "http://sourceware.org/cgi-bin/cvsweb.cgi/~checkout~/src/gdb/NEWS?content-type=text/x-cvsweb-markup&cvsroot=src" }, { "name" : "RHSA-2013:0522", "refsource" : "REDHAT", "url" : "http://rhn.redhat.com/errata/RHSA-2013-0522.html" }, { "name" : "1028191", "refsource" : "SECTRACK", "url" : "http://www.securitytracker.com/id/1028191" } ] } }