CVE-2005-0758

EPSS 0.19%

Published: 5/13/2005Modified: 4/28/2026

Also known as:DEBIAN-CVE-2005-0758

Description

zgrep in gzip before 1.3.5 does not properly sanitize arguments, which allows local users to execute arbitrary commands via filenames that are injected into a sed script.

Affected packages (2)

Debian/bzip2from 0, < 1.0.2-8.1
Debian/gzipfrom 0, < 1.3.5-10

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2005-0758