PT-2000-1430 · Gnome+2 · Gnome Gdm+2

Published

2000-05-24

Updated

2008-09-10

CVE-2000-0491

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions GNOME gdm (affected versions not specified) KDE kdm (affected versions not specified) wdm (affected versions not specified)

Description A buffer overflow issue exists in the XDMCP parsing code, allowing remote attackers to execute arbitrary commands or cause a denial of service by sending a long FORWARD QUERY request.

Recommendations For GNOME gdm, update to a version that includes a fix for the buffer overflow issue in the XDMCP parsing code. For KDE kdm, update to a version that includes a fix for the buffer overflow issue in the XDMCP parsing code. For wdm, update to a version that includes a fix for the buffer overflow issue in the XDMCP parsing code.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2000-0491

Affected Products

Gnome Gdm

Kde Kdm

Wdm

PT-2000-1430 · Gnome+2 · Gnome Gdm+2

CVE-2000-0491

Related Identifiers

Affected Products

References · 10