CVE-2025-4558 WormHole Tech GPM - Unverified Password Change

The GPM from WormHole Tech has an Unverified Password Change vulnerability, allowing unauthenticated remote attackers to change any user's password and use the modified password to log into the system...

CVE-2001-1203

Format string vulnerability in gpm-root in gpm 1.17.8 through 1.17.18 allows local users to gain root privileges...

gpm creates temporary files insecurely

Overview gpm version 1.19.3, which usually runs as root, is vulnerable due to a flaw that allows a local user to exploit a race condition to corrupt files that gpm uses. Description gpm General Purpose Mouse is a program that lets you use the mouse in console mode when not using XWindows. It is...

Linux gpm daemon allows arbitrary file removal

Overview gpm version 1.19.2 and earlier are vulnerable due to a flaw that allows a local user to delete arbitrary files. Description gpm General Purpose Mouse is the program that lets you use the mouse in console mode when not using XWindows. It is usually included in Linux distributions, and can...

CVE-2001-0116

gpm 1.19.3 allows local users to overwrite arbitrary files via a symlink attack...

CVE-2000-0667

The CVE-2000-0667 issue affects the Linux gpm daemon (the General Purpose Mouse utility) and allows a local user to delete arbitrary files. Concrete details from connected sources indicate the vulnerability exists in gpm versions 1.19.2 and earlier and is exploitable by a local user to remove fil...

CVE-2000-0667

Vulnerability in gpm in Caldera Linux allows local users to delete arbitrary files or conduct a denial of service...

Security Update: DoS on gpm

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Caldera Systems, Inc. Security Advisory Subject: DoS on gpm Advisory number: CSSA-2000-024.0 Issue date: 2000 July, 6 Cross reference: 1. Problem Description There are security problems within gpm General Purpose Mouse support daemon which allow remov...

Дырка в GPM

Пользователь может удалять любые файлы, кроме этого имеется возможность DoS-атак...

Дырка в gpm

при запуске пользовательского приложения из gmp-root сначала выполняется setuid и только потом setgid, который не срабатывает. В результате, пользовательское приложение запускается с gid wheel...

gpm 1.18.11.19 Debian 2.x RedHat 6.x S.u.S.E 5.36.x - gpm Setgid

gpm 1.18.11.19 Debian 2.x RedHat 6.x S.u.S.E 5.36.x - gpm Setgid source: https://www.securityfocus.com/bid/1069/info A vulnerability exists in the gpm-root program, part of the gpm package. This package is used to enable mice on the consoles of many popular Linux distributions. The problem is a...

gpm 1.18.1/1.19 / Debian 2.x / RedHat 6.x / S.u.S.E 5.3/6.x - gpm Setgid

source: https://www.securityfocus.com/bid/1069/info A vulnerability exists in the gpm-root program, part of the gpm package. This package is used to enable mice on the consoles of many popular Linux distributions. The problem is a design error, caused when a programmer chose to attempt to revert ...