CVSS: 7.8EPSS: 0%CPEs: 30EXPL: 0CVE-2011-1709
https://notcve.org/view.php?id=CVE-2011-1709
14 Jun 2011 — GNOME Display Manager (gdm) before 2.32.2, when glib 2.28 is used, enables execution of a web browser with the uid of the gdm account, which allows local users to gain privileges via vectors involving the x-scheme-handler/http MIME type. GNOME Display Manager (GDM) antes de v2.32.2, cuando se utiliza glib v2.28, permite la ejecución de un navegador web con el uid de la cuenta de gdm, que permite a usuarios locales conseguir privilegios a través de vectores implican el tipo MIME x-scheme-handler/http. • http://ftp.gnome.org/pub/GNOME/sources/gdm/2.32/gdm-2.32.2.news • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 9.8EPSS: 0%CPEs: 27EXPL: 0CVE-2011-0727 – gdm: privilege escalation vulnerability
https://notcve.org/view.php?id=CVE-2011-0727
31 Mar 2011 — GNOME Display Manager (gdm) 2.x before 2.32.1 allows local users to change the ownership of arbitrary files via a symlink attack on a (1) dmrc or (2) face icon file under /var/cache/gdm/. GNOME Display Manager (GDM) v2.x anterior a v2.32.1 permite a usuarios locales cambiar el propietario de archivos arbitrarios mediante un ataque de enlace simbólico en un (1) DMRC o (2) fichero de icono en /var/cache/gdm/. This GLSA contains notification of vulnerabilities found in several Gentoo packages which have been f... • http://ftp.gnome.org/pub/GNOME/sources/gdm/2.32/gdm-2.32.1.news • CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVSS: 9.1EPSS: 0%CPEs: 14EXPL: 0CVE-2009-2697 – gdm not built with tcp_wrappers
https://notcve.org/view.php?id=CVE-2009-2697
04 Sep 2009 — The Red Hat build script for the GNOME Display Manager (GDM) before 2.16.0-56 on Red Hat Enterprise Linux (RHEL) 5 omits TCP Wrapper support, which might allow remote attackers to bypass intended access restrictions via XDMCP connections, a different vulnerability than CVE-2007-5079. Red Hat build script para GNOME Display Manager (GDM) anterior a v2.16.0-56 en Red Hat Enterprise Linux (RHEL) v5 no da soporte a TCP Wrapper, lo que podría permitir a atacantes remotos saltar las restricciones de acceso previs... • http://secunia.com/advisories/36553 • CWE-287: Improper Authentication •
CVSS: 7.5EPSS: 0%CPEs: 39EXPL: 0CVE-2007-3381 – Gdm denial of service
https://notcve.org/view.php?id=CVE-2007-3381
07 Aug 2007 — The GDM daemon in GNOME Display Manager (GDM) before 2.14.13, 2.16.x before 2.16.7, 2.18.x before 2.18.4, and 2.19.x before 2.19.5 does not properly handle NULL return values from the g_strsplit function, which allows local users to cause a denial of service (persistent daemon crash) via a crafted command to the daemon's socket, related to (1) gdm.c and (2) gdmconfig.c in daemon/, and (3) gdmconfig.c and (4) gdmflexiserver.c in gui/. El demonio GDM en GNOME Display Mangager (GDM) anterior a 2.14.13, 2.16.x ... • http://ftp.gnome.org/pub/GNOME/sources/gdm/2.14/gdm-2.14.13.news • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2006-6105
https://notcve.org/view.php?id=CVE-2006-6105
15 Dec 2006 — Format string vulnerability in the host chooser window (gdmchooser) in GNOME Foundation Display Manager (gdm) allows local users to execute arbitrary code via format string specifiers in a hostname, which are used in an error dialog. Vulnerabilidad de formato de cadena en la ventana de selección de host (gdmchooser) en GNOME Foundation Display Manager (gdm) permite a atacantes remotos ejecutar código de su elección mediante especificadores de formato de cadena en un nombre de host, que se utilizan en un men... • http://ftp.acc.umu.se/pub/GNOME/sources/gdm/2.17/gdm-2.17.4.news •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2006-2452
https://notcve.org/view.php?id=CVE-2006-2452
09 Jun 2006 — GNOME GDM 2.8, 2.12, 2.14, and 2.15, when the "face browser" feature is enabled, allows local users to access the "Configure Login Manager" functionality using their own password instead of the root password, which can be leveraged to gain additional privileges. • http://bugzilla.gnome.org/show_bug.cgi?id=343476 •
CVSS: 7.0EPSS: 0%CPEs: 1EXPL: 0CVE-2006-1057
https://notcve.org/view.php?id=CVE-2006-1057
25 Apr 2006 — Race condition in daemon/slave.c in gdm before 2.14.1 allows local users to gain privileges via a symlink attack when gdm performs chown and chgrp operations on the .ICEauthority file. • http://cvs.gnome.org/viewcvs/gdm2/daemon/slave.c?r1=1.260&r2=1.261 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 7.5EPSS: 0%CPEs: 9EXPL: 0CVE-2003-0793
https://notcve.org/view.php?id=CVE-2003-0793
21 Oct 2003 — GDM 2.4.4.x before 2.4.4.4, and 2.4.1.x before 2.4.1.7, does not restrict the size of input, which allows attackers to cause a denial of service (memory consumption). GDM 2.4.4.x anteriores a 2.4.4.4 y 2.4.1.x anteriores a 2.4.1.7 no restringe el tamaño de la entrada, lo que permite a atacantes causar una denegación de servicio (consumición de memoria). • http://cvs.gnome.org/bonsai/cvsblame.cgi?file=gdm2/NEWS&rev=&root=/cvs/gnome •
CVSS: 7.5EPSS: 0%CPEs: 9EXPL: 0CVE-2003-0794
https://notcve.org/view.php?id=CVE-2003-0794
21 Oct 2003 — GDM 2.4.4.x before 2.4.4.4, and 2.4.1.x before 2.4.1.7, does not limit the number or duration of commands and uses a blocking socket connection, which allows attackers to cause a denial of service (resource exhaustion) by sending commands and not reading the results. GDM 2.4.4.x anteriores a 2.4.4.4, y 2.4.1.x anteriores a 2.4.1.7 no limita el número de comandos y usa una conexión de socket con bloqueo, lo que permite a atacantes causar una denegación de servicio (consumición de recursos) enviando comandos ... • http://cvs.gnome.org/bonsai/cvsblame.cgi?file=gdm2/NEWS&rev=&root=/cvs/gnome •
CVSS: 5.5EPSS: 0%CPEs: 9EXPL: 0CVE-2003-0547
https://notcve.org/view.php?id=CVE-2003-0547
22 Aug 2003 — GDM before 2.4.1.6, when using the "examine session errors" feature, allows local users to read arbitrary files via a symlink attack on the ~/.xsession-errors file. GDM anteriores a 2.4.1.6, cuando usa la característica "examinar errores de sesión", permite a usuarios locales leer ficheros arbitrario mediante un ataque de enlaces simbólicos en el fichero ~/.xsession-errors • http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000729 •