Lucene search

[email protected]CVE-2000-0491

HistoryJul 12, 2000 - 4:00 a.m.

CVE-2000-0491

2000-07-1204:00:00

[email protected]

web.nvd.nist.gov

buffer overflow

gdm

kdm

wdm

remote attack

command execution

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8 High

AI Score

Confidence

High

0.071 Low

EPSS

Percentile

94.0%

JSON

Buffer overflow in the XDMCP parsing code of GNOME gdm, KDE kdm, and wdm allows remote attackers to execute arbitrary commands or cause a denial of service via a long FORWARD_QUERY request.

Affected configurations

NVD

Node

gnomegdmMatch1.0

Node

calderaopenlinux

susesuse_linuxMatch6.2

susesuse_linuxMatch6.4

CPENameOperatorVersion
gnome:gdmgnome gdmeq1.0

CPE	Name	Operator	Version
gnome:gdm	gnome gdm	eq	1.0

References

ftp://ftp.calderasystems.com/pub/OpenLinux/security/CSSA-2000-013.0.txt

archives.neohapsis.com/archives/bugtraq/2000-05/0241.html

archives.neohapsis.com/archives/bugtraq/2000-06/0025.html

www.novell.com/linux/security/advisories/suse_security_announce_49.html

www.securityfocus.com/bid/1233

www.securityfocus.com/bid/1279

www.securityfocus.com/bid/1370

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8 High

AI Score

Confidence

High

0.071 Low

EPSS

Percentile

94.0%

JSON

Related for CVE-2000-0491

cvelist1 nvd1 nessus1