Buffer Overflow Vulnerability in Gnome gdm, KDE kdm, and WDM
CVE-2000-0491

Currently unrated

Key Information:

Vendor: Gnome
Status: Gdm
Vendor: CVE Published:; 24 May 2000

Summary

This vulnerability arises from a buffer overflow in the XDMCP parsing code utilized by GNOME gdm, KDE kdm, and wdm. Attackers can leverage this flaw to execute arbitrary commands on the affected systems or induce a denial of service through the transmission of specially crafted long FORWARD_QUERY requests. It poses significant risks as it can be exploited remotely, impacting the security and stability of the operating environment.

References

http://archives.neohapsis.com/archives/bugtraq/2000-06/00...

mailing-listx_refsource_BUGTRAQ

http://www.securityfocus.com/bid/1279

vdb-entryx_refsource_BID

http://www.securityfocus.com/bid/1370

vdb-entryx_refsource_BID

EPSS Score

6% chance of being exploited in the next 30 days.

Timeline

Vulnerability Reserved
Jul 11, 2000
Vulnerability published
May 24, 2000