Back to search
CVE-2003-0794
Published: Oct 21, 2003
Modified: Aug 8, 2024
PUBLISHED
Description
GDM 2.4.4.x before 2.4.4.4, and 2.4.1.x before 2.4.1.7, does not limit the number or duration of commands and uses a blocking socket connection, which allows attackers to cause a denial of service (resource exhaustion) by sending commands and not reading the results.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
gdm-command-dos(13448)
vdb-entry
x_refsource_XF
MDKSA-2003:100
vendor-advisory
x_refsource_MANDRAKE
CLA-2003:766
vendor-advisory
x_refsource_CONECTIVA
8846
vdb-entry
x_refsource_BID
http://cvs.gnome.org/bonsai/cvsblame.cgi?file=gdm2/NEWS&rev=&root=/cvs/gnome
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now