CVSS: 9.1EPSS: 0%CPEs: 14EXPL: 0CVE-2009-2697 – gdm not built with tcp_wrappers
https://notcve.org/view.php?id=CVE-2009-2697
04 Sep 2009 — The Red Hat build script for the GNOME Display Manager (GDM) before 2.16.0-56 on Red Hat Enterprise Linux (RHEL) 5 omits TCP Wrapper support, which might allow remote attackers to bypass intended access restrictions via XDMCP connections, a different vulnerability than CVE-2007-5079. Red Hat build script para GNOME Display Manager (GDM) anterior a v2.16.0-56 en Red Hat Enterprise Linux (RHEL) v5 no da soporte a TCP Wrapper, lo que podría permitir a atacantes remotos saltar las restricciones de acceso previs... • http://secunia.com/advisories/36553 • CWE-287: Improper Authentication •
CVSS: 7.5EPSS: 0%CPEs: 39EXPL: 0CVE-2007-3381 – Gdm denial of service
https://notcve.org/view.php?id=CVE-2007-3381
07 Aug 2007 — The GDM daemon in GNOME Display Manager (GDM) before 2.14.13, 2.16.x before 2.16.7, 2.18.x before 2.18.4, and 2.19.x before 2.19.5 does not properly handle NULL return values from the g_strsplit function, which allows local users to cause a denial of service (persistent daemon crash) via a crafted command to the daemon's socket, related to (1) gdm.c and (2) gdmconfig.c in daemon/, and (3) gdmconfig.c and (4) gdmflexiserver.c in gui/. El demonio GDM en GNOME Display Mangager (GDM) anterior a 2.14.13, 2.16.x ... • http://ftp.gnome.org/pub/GNOME/sources/gdm/2.14/gdm-2.14.13.news • CWE-20: Improper Input Validation •