CVE-2003-0794

Currently unrated

Key Information:

Vendor: Gnome
Status: Gdm
Vendor: CVE Published:; 17 November 2003

Summary

GDM 2.4.4.x before 2.4.4.4, and 2.4.1.x before 2.4.1.7, does not limit the number or duration of commands and uses a blocking socket connection, which allows attackers to cause a denial of service (resource exhaustion) by sending commands and not reading the results.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/13448

vdb-entryx_refsource_XF

http://www.mandriva.com/security/advisories?name=MDKSA-20...

vendor-advisoryx_refsource_MANDRAKE

http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio...

vendor-advisoryx_refsource_CONECTIVA

Timeline

Vulnerability published
Nov 17, 2003
Vulnerability Reserved
Sep 17, 2003