Gdm Security Vulnerabilities and Issues — Gdm CVE List

Lucene search

GnomeGdm

4 matches found

CVE•added 2003/08/27 4:0 a.m.•54 views

CVE-2003-0547

GDM before 2.4.1.6, when using the "examine session errors" feature, allows local users to read arbitrary files via a symlink attack on the ~/.xsession-errors file.

2.1CVSS6.2AI score0.00111EPSS

CVE•added 2000/02/04 5:0 a.m.•53 views

CVE-1999-0990

Error messages generated by gdm with the VerboseAuth setting allows an attacker to identify valid users on a system.

2.1CVSS6.8AI score0.0013EPSS

CVE•added 2003/11/17 5:0 a.m.•48 views

CVE-2003-0793

GDM 2.4.4.x before 2.4.4.4, and 2.4.1.x before 2.4.1.7, does not restrict the size of input, which allows attackers to cause a denial of service (memory consumption).

2.1CVSS6.3AI score0.00074EPSS

CVE•added 2003/11/17 5:0 a.m.•37 views

CVE-2003-0794

GDM 2.4.4.x before 2.4.4.4, and 2.4.1.x before 2.4.1.7, does not limit the number or duration of commands and uses a blocking socket connection, which allows attackers to cause a denial of service (resource exhaustion) by sending commands and not reading the results.

2.1CVSS6.5AI score0.00083EPSS