CyberSec.Space Logo
Back to CVE Browser

CVE-2000-0491

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1820%
EPSS Percentile33.29th
PublishedMay 24, 2000
Last ModifiedApr 16, 2026

Vulnerability Description

Buffer overflow in the XDMCP parsing code of GNOME gdm, KDE kdm, and wdm allows remote attackers to execute arbitrary commands or cause a denial of service via a long FORWARD_QUERY request.

Affected Platforms (CPE)

πŸ“¦
Gnome

Gdm

= 1.0
πŸ’»
Caldera

Openlinux

All versions
πŸ’»
Suse

Suse Linux

= 6.2
πŸ’»
Suse

Suse Linux

= 6.4

References & Advisories

πŸ”— ftp://ftp.calderasystems.com/pub/OpenLinux/security/CSSA-2000-013.0.txt
πŸ”— http://archives.neohapsis.com/archives/bugtraq/2000-05/0241.html
πŸ”— http://archives.neohapsis.com/archives/bugtraq/2000-06/0025.html
πŸ”— http://www.novell.com/linux/security/advisories/suse_security_announce_49.html
πŸ”— http://www.securityfocus.com/bid/1233
πŸ”— http://www.securityfocus.com/bid/1279
πŸ”— http://www.securityfocus.com/bid/1370
πŸ”— ftp://ftp.calderasystems.com/pub/OpenLinux/security/CSSA-2000-013.0.txt

Related Vulnerabilities

CVE-2018-144247.8

The daemon in GDM through 3.29.1 does not properly unexport display objects from its D-Bus interface when they are destroyed, whic...

CVE-2015-74967.2

GNOME Display Manager (gdm) before 3.18.2 allows physically proximate attackers to bypass the lock screen by holding the Escape ke...

CVE-2011-17097.2

GNOME Display Manager (gdm) before 2.32.2, when glib 2.28 is used, enables execution of a web browser with the uid of the gdm acco...

CVE-2011-07276.9

GNOME Display Manager (gdm) 2.x before 2.32.1 allows local users to change the ownership of arbitrary files via a symlink attack o...