User Enumeration Vulnerability in GDM by The GNOME Project
CVE-1999-0990

Currently unrated

Key Information:

Vendor: Gnome
Status: Gdm
Vendor: CVE Published:; 5 December 1999

What is CVE-1999-0990?

The GDM (GNOME Display Manager) vulnerability arises from the VerboseAuth setting that generates error messages disclosing valid user accounts. This flaw can be exploited by malicious actors to conduct user enumeration attacks, potentially compromising user account security on Linux systems. Organizations utilizing GDM should analyze their configurations and apply necessary security measures to mitigate this risk.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-...

x_refsource_MISC

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Dec 14, 1999
Vulnerability published
Dec 5, 1999

JSON

Gnome

What is CVE-1999-0990?

References

Timeline