Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2009-2697
HistorySep 04, 2009 - 8:30 p.m.

CVE-2009-2697

2009-09-0420:30:00
CWE-287
[email protected]
web.nvd.nist.gov
27
red hat
gdm
rhel
cve-2009-2697
xdmcp
security vulnerability

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

6.5 Medium

AI Score

Confidence

Low

0.011 Low

EPSS

Percentile

84.2%

JSON

The Red Hat build script for the GNOME Display Manager (GDM) before 2.16.0-56 on Red Hat Enterprise Linux (RHEL) 5 omits TCP Wrapper support, which might allow remote attackers to bypass intended access restrictions via XDMCP connections, a different vulnerability than CVE-2007-5079.

Affected configurations

NVD
Node
gnomegdmRange2.16
OR
gnomegdmMatch0.7
OR
gnomegdmMatch1.0
OR
gnomegdmMatch2.0
OR
gnomegdmMatch2.2
OR
gnomegdmMatch2.3
OR
gnomegdmMatch2.4
OR
gnomegdmMatch2.5
OR
gnomegdmMatch2.6
OR
gnomegdmMatch2.8
OR
gnomegdmMatch2.13
OR
gnomegdmMatch2.14
OR
gnomegdmMatch2.15
AND
redhatenterprise_linuxMatch5

Related

prion 2
cvelist 2
nvd 2
ubuntucve 1
nessus 8
oraclelinux 2
openvas 11
centos 2
redhat 2
veracode 2
cve 1
prion
prion
Design/Logic Flaw
2009-09-04 20:30:00
Design/Logic Flaw
2007-09-25 01:17:00
cvelist
cvelist
CVE-2009-2697
2009-09-04 20:00:00
CVE-2007-5079
2007-09-25 01:00:00
nvd
nvd
CVE-2009-2697
2009-09-04 20:30:00
CVE-2007-5079
2007-09-25 01:17:00
ubuntucve
ubuntucve
CVE-2009-2697
2009-09-04 00:00:00
nessus
nessus
Oracle Linux 5 : gdm (ELSA-2009-1364)
2023-09-07 00:00:00
RHEL 5 : gdm (RHSA-2009:1364)
2009-09-02 00:00:00
Scientific Linux Security Update : gdm on SL5.x i386/x86_64
2012-08-01 00:00:00
oraclelinux
oraclelinux
gdm security and bug fix update
2009-09-08 00:00:00
gdm security and bug fix update
2010-08-26 00:00:00
openvas
openvas
CentOS Security Advisory CESA-2009:1364 (gdm)
2009-09-21 00:00:00
CentOS Update for gdm CESA-2009:1364 centos5 i386
2011-08-09 00:00:00
Oracle: Security Advisory (ELSA-2009-1364)
2015-10-08 00:00:00
centos
centos
gdm security update
2009-09-15 18:50:41
gdm security update
2010-08-27 14:56:31
redhat
redhat
(RHSA-2009:1364) Low: gdm security and bug fix update
2009-09-02 03:02:33
(RHSA-2010:0657) Low: gdm security and bug fix update
2010-08-26 00:00:00
veracode
veracode
Access Control Bypass
2020-04-10 00:36:11
Access Restriction Bypass
2020-04-10 00:50:55
cve
cve
CVE-2007-5079
2007-09-25 01:17:00

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

6.5 Medium

AI Score

Confidence

Low

0.011 Low

EPSS

Percentile

84.2%

JSON
Related for CVE-2009-2697
prion2cvelist2nvd2ubuntucve1nessus8oraclelinux2openvas11centos2redhat2veracode2cve1