CVE-2008-4865

Untrusted search path vulnerability in valgrind before 3.4.0 allows local users to execute arbitrary programs via a Trojan horse .valgrindrc file in the current working directory, as demonstrated using a malicious --db-command options.  NOTE: the severity of this issue has been disputed, but CVE is including this issue because execution of a program from an untrusted directory is a common scenario.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.2 UNKNOWN
LOCAL
LOW
AV:L/AC:L/Au:N/C:C/I:C/A:C
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 20%
VendorProductVersion
valgrindvalgrind
𝑥
≤ 3.4.0
valgrindvalgrind
1.9.6
valgrindvalgrind
2.0.0
valgrindvalgrind
2.1.0
valgrindvalgrind
2.1.1
valgrindvalgrind
2.2.0
valgrindvalgrind
2.4.1
valgrindvalgrind
2.4.1
valgrindvalgrind
3.0.0
valgrindvalgrind
3.0.1
valgrindvalgrind
3.1.0
valgrindvalgrind
3.1.1
valgrindvalgrind
3.2.0
valgrindvalgrind
3.2.1
valgrindvalgrind
3.2.2
valgrindvalgrind
3.2.3
valgrindvalgrind
3.3.0
valgrindvalgrind
3.3.0:rc1
valgrindvalgrind
3.3.0:rc2
valgrindvalgrind
3.3.0:rc3
valgrindvalgrind
3.3.1
valgrindvalgrind
3.3.1:rc1
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
valgrind
bullseye
1:3.16.1-1
fixed
bookworm
1:3.19.0-1
fixed
sid
1:3.20.0-2.1
fixed
trixie
1:3.20.0-2.1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
valgrind
natty
not-affected
maverick
not-affected
lucid
not-affected
karmic
not-affected
jaunty
not-affected
intrepid
ignored
hardy
ignored
gutsy
ignored
dapper
ignored
References
http://lists.opensuse.org/opensuse-security-announce/2009-01/msg00004.html
http://secunia.com/advisories/33568
http://security.gentoo.org/glsa/glsa-200902-03.xml
http://sourceforge.net/mailarchive/forum.php?thread_name=200901032045.17604.jseward%40acm.org&forum_name=valgrind-announce
http://www.openwall.com/lists/oss-security/2008/10/27/4
http://www.openwall.com/lists/oss-security/2008/10/28/5
http://www.openwall.com/lists/oss-security/2008/10/29/5
http://www.openwall.com/lists/oss-security/2008/10/29/9
http://lists.opensuse.org/opensuse-security-announce/2009-01/msg00004.html
http://secunia.com/advisories/33568
http://security.gentoo.org/glsa/glsa-200902-03.xml
http://sourceforge.net/mailarchive/forum.php?thread_name=200901032045.17604.jseward%40acm.org&forum_name=valgrind-announce
http://www.openwall.com/lists/oss-security/2008/10/27/4
http://www.openwall.com/lists/oss-security/2008/10/28/5
http://www.openwall.com/lists/oss-security/2008/10/29/5
http://www.openwall.com/lists/oss-security/2008/10/29/9