CVSS: 7.5EPSS: 2%CPEs: 2EXPL: 3CVE-2001-1086 – XFree86 X11R6 3.3 XDM - Session Cookie Guessing
https://notcve.org/view.php?id=CVE-2001-1086
XDM in XFree86 3.3 and 3.3.3 generates easily guessable cookies using gettimeofday() when compiled with the HasXdmXauth option, which allows remote attackers to gain unauthorized access to the X display via a brute force attack. • https://www.exploit-db.com/exploits/20993 http://online.securityfocus.com/archive/1/195008 http://www.securityfocus.com/archive/1/194907 http://www.securityfocus.com/bid/2985 https://exchange.xforce.ibmcloud.com/vulnerabilities/6808 •
CVSS: 4.6EPSS: 0%CPEs: 1EXPL: 2CVE-2000-0976 – XFree86 3.3.5/3.3.6 - Xlib Display Buffer Overflow
https://notcve.org/view.php?id=CVE-2000-0976
Buffer overflow in xlib in XFree 3.3.x possibly allows local users to execute arbitrary commands via a long DISPLAY environment variable or a -display command line parameter. • https://www.exploit-db.com/exploits/20294 ftp://patches.sgi.com/support/free/security/advisories/20020502-01-I http://archives.neohapsis.com/archives/bugtraq/2000-10/0211.html http://www.iss.net/security_center/static/5751.php http://www.securityfocus.com/bid/1805 •
CVSS: 4.6EPSS: 0%CPEs: 1EXPL: 0CVE-2000-1060
https://notcve.org/view.php?id=CVE-2000-1060
The default configuration of XFCE 3.5.1 bypasses the Xauthority access control mechanism with an "xhost + localhost" command in the xinitrc program, which allows local users to sniff X Windows traffic and gain privileges. • http://archives.neohapsis.com/archives/bugtraq/2000-10/0022.html http://www.securityfocus.com/bid/1736 https://exchange.xforce.ibmcloud.com/vulnerabilities/5305 •
CVSS: 5.0EPSS: 0%CPEs: 10EXPL: 1CVE-2000-0620
https://notcve.org/view.php?id=CVE-2000-0620
libX11 X library allows remote attackers to cause a denial of service via a resource mask of 0, which causes libX11 to go into an infinite loop. • http://marc.info/?l=bugtraq&m=96146116627474&w=2 http://www.securityfocus.com/bid/1409 https://exchange.xforce.ibmcloud.com/vulnerabilities/4996 •
CVSS: 5.0EPSS: 2%CPEs: 13EXPL: 2CVE-2000-0504 – Gnome 1.0/1.1 / Group X 11.0 / XFree86 X11R6 3.3.x/4.0 - Denial of Service
https://notcve.org/view.php?id=CVE-2000-0504
libICE in XFree86 allows remote attackers to cause a denial of service by specifying a large value which is not properly checked by the SKIP_STRING macro. • https://www.exploit-db.com/exploits/20023 http://archives.neohapsis.com/archives/bugtraq/2000-06/0170.html http://www.securityfocus.com/bid/1369 http://www.xfree86.org/security •