User Enumeration Vulnerability in GDM by The GNOME Project
CVE-1999-0990

Currently unrated

Key Information:

Vendor
Gnome
Status
Gdm
Vendor
CVE Published:
5 December 1999

Summary

The GDM (GNOME Display Manager) vulnerability arises from the VerboseAuth setting that generates error messages disclosing valid user accounts. This flaw can be exploited by malicious actors to conduct user enumeration attacks, potentially compromising user account security on Linux systems. Organizations utilizing GDM should analyze their configurations and apply necessary security measures to mitigate this risk.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-...
x_refsource_MISC

Timeline

  • Vulnerability Reserved

  • Vulnerability published

.