CyberSec.Space Logo
Back to CVE Browser

CVE-2004-0368

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0630%
EPSS Percentile34.36th
PublishedMay 4, 2004
Last ModifiedApr 16, 2026

Vulnerability Description

Double free vulnerability in dtlogin in CDE on Solaris, HP-UX, and other operating systems allows remote attackers to execute arbitrary code via a crafted XDMCP packet.

Affected Platforms (CPE)

πŸ“¦
Open Group

Cde Common Desktop Environment

= 1.0.1
πŸ“¦
Open Group

Cde Common Desktop Environment

= 1.0.2
πŸ“¦
Open Group

Cde Common Desktop Environment

= 1.1
πŸ“¦
Open Group

Cde Common Desktop Environment

= 1.2
πŸ“¦
Open Group

Cde Common Desktop Environment

= 2.0
πŸ“¦
Open Group

Cde Common Desktop Environment

= 2.1
πŸ“¦
Open Group

Cde Common Desktop Environment

= 2.1.20
πŸ“¦
Xi Graphics

Dextop

= 2.1
πŸ“¦
Xi Graphics

Dextop

= 3.0
πŸ’»
Ibm

Aix

= 4.3.3
πŸ’»
Ibm

Aix

= 5.1
πŸ’»
Ibm

Aix

= 5.2

References & Advisories

πŸ”— ftp://patches.sgi.com/support/free/security/advisories/20040801-01-P
πŸ”— http://archives.neohapsis.com/archives/vulnwatch/2004-q1/0064.html
πŸ”— http://lists.immunitysec.com/pipermail/dailydave/2004-March/000402.html
πŸ”— http://secunia.com/advisories/11210/
πŸ”— http://secunia.com/advisories/11214/
πŸ”— http://secunia.com/advisories/11495/
πŸ”— http://secunia.com/advisories/11614/
πŸ”— http://sunsolve.sun.com/search/document.do?assetkey=1-26-101478-1

Related Vulnerabilities

CVE-2002-067910.0

Buffer overflow in Common Desktop Environment (CDE) ToolTalk RPC database server (rpc.ttdbserverd) allows remote attackers to exec...

CVE-2017-36227.8

Vulnerability in the Solaris component of Oracle Sun Systems Products Suite (subcomponent: Common Desktop Environment (CDE)). The ...

CVE-2007-34717.2

Buffer overflow in the dtsession Common Desktop Environment (CDE) Session Manager in Sun Solaris 8, 9, and 10 allows local users t...

CVE-2009-34686.9

Multiple unspecified vulnerabilities in Common Desktop Environment (CDE) in Sun Solaris 10, when Trusted Extensions is enabled, al...