CyberSec.Space Logo
CVEブラウザに戻る

CVE-2000-0491

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1820%
EPSS Percentile33.29th
Published2000年5月24日
Last Modified2026年4月16日

Vulnerability Description

Buffer overflow in the XDMCP parsing code of GNOME gdm, KDE kdm, and wdm allows remote attackers to execute arbitrary commands or cause a denial of service via a long FORWARD_QUERY request.

Affected Platforms (CPE)

📦
Gnome

Gdm

= 1.0
💻
Caldera

Openlinux

All versions
💻
Suse

Suse Linux

= 6.2
💻
Suse

Suse Linux

= 6.4

References & Advisories

🔗 ftp://ftp.calderasystems.com/pub/OpenLinux/security/CSSA-2000-013.0.txt
🔗 http://archives.neohapsis.com/archives/bugtraq/2000-05/0241.html
🔗 http://archives.neohapsis.com/archives/bugtraq/2000-06/0025.html
🔗 http://www.novell.com/linux/security/advisories/suse_security_announce_49.html
🔗 http://www.securityfocus.com/bid/1233
🔗 http://www.securityfocus.com/bid/1279
🔗 http://www.securityfocus.com/bid/1370
🔗 ftp://ftp.calderasystems.com/pub/OpenLinux/security/CSSA-2000-013.0.txt

関連する脆弱性情報

CVE-2018-144247.8

The daemon in GDM through 3.29.1 does not properly unexport display objects from its D-Bus interface when they are destroyed, whic...

CVE-2015-74967.2

GNOME Display Manager (gdm) before 3.18.2 allows physically proximate attackers to bypass the lock screen by holding the Escape ke...

CVE-2011-17097.2

GNOME Display Manager (gdm) before 2.32.2, when glib 2.28 is used, enables execution of a web browser with the uid of the gdm acco...

CVE-2011-07276.9

GNOME Display Manager (gdm) 2.x before 2.32.1 allows local users to change the ownership of arbitrary files via a symlink attack o...