121245 : GDB Server Detection

Risk 4 : Service Detection

The remote host is running gdbserver, a program which can be used to run the GDB debugger on a different machine than the one which is running the program being debugged.

Since gdbserver offers no authentication whatsoever, an attacker may connect to this port, change the value of the registers and the memory of the process being debugged, and therefore be able to execute arbitrary code on the remote host with the privileges of the process being debugged.

Solution:
Filter incoming traffic to this port or disable this service
References:
CVSS Information:
Low Attack Complexity, Partial Confidentiality Impact, Partial Integrity Impact, Partial Availability Impact
Credit:
Tenable : 2009-12-04
New Search
Keywords
Risk Factor
Start Date
End Date
Browse