CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2004-0368

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0630%
EPSS Percentile34.36th
Published2004年5月4日
Last Modified2026年4月16日

Vulnerability Description

Double free vulnerability in dtlogin in CDE on Solaris, HP-UX, and other operating systems allows remote attackers to execute arbitrary code via a crafted XDMCP packet.

Affected Platforms (CPE)

📦
Open Group

Cde Common Desktop Environment

= 1.0.1
📦
Open Group

Cde Common Desktop Environment

= 1.0.2
📦
Open Group

Cde Common Desktop Environment

= 1.1
📦
Open Group

Cde Common Desktop Environment

= 1.2
📦
Open Group

Cde Common Desktop Environment

= 2.0
📦
Open Group

Cde Common Desktop Environment

= 2.1
📦
Open Group

Cde Common Desktop Environment

= 2.1.20
📦
Xi Graphics

Dextop

= 2.1
📦
Xi Graphics

Dextop

= 3.0
💻
Ibm

Aix

= 4.3.3
💻
Ibm

Aix

= 5.1
💻
Ibm

Aix

= 5.2

References & Advisories

🔗 ftp://patches.sgi.com/support/free/security/advisories/20040801-01-P
🔗 http://archives.neohapsis.com/archives/vulnwatch/2004-q1/0064.html
🔗 http://lists.immunitysec.com/pipermail/dailydave/2004-March/000402.html
🔗 http://secunia.com/advisories/11210/
🔗 http://secunia.com/advisories/11214/
🔗 http://secunia.com/advisories/11495/
🔗 http://secunia.com/advisories/11614/
🔗 http://sunsolve.sun.com/search/document.do?assetkey=1-26-101478-1

相關漏洞威脅

CVE-2002-067910.0

Buffer overflow in Common Desktop Environment (CDE) ToolTalk RPC database server (rpc.ttdbserverd) allows remote attackers to exec...

CVE-2017-36227.8

Vulnerability in the Solaris component of Oracle Sun Systems Products Suite (subcomponent: Common Desktop Environment (CDE)). The ...

CVE-2007-34717.2

Buffer overflow in the dtsession Common Desktop Environment (CDE) Session Manager in Sun Solaris 8, 9, and 10 allows local users t...

CVE-2009-34686.9

Multiple unspecified vulnerabilities in Common Desktop Environment (CDE) in Sun Solaris 10, when Trusted Extensions is enabled, al...