CVE-2000-0374

3 documents3 sources
Severity
10.0CRITICAL
EPSS
0.3%
top 44.18%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Caldera Openlinux
Timeline
PublishedAug 22
Latest updateMay 3

Description

The default configuration of kdm in Caldera and Mandrake Linux, and possibly other distributions, allows XDMCP connections from any host, which allows remote attackers to obtain sensitive information or bypass additional access restrictions.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

NVDcaldera/openlinux2.2, 2.3+1

🔴Vulnerability Details

2
GHSA
GHSA-fm67-m334-93w3: The default configuration of kdm in Caldera and Mandrake Linux, and possibly other distributions, allows XDMCP connections from any host, which allows2022-05-03
CVEList
CVE-2000-0374: The default configuration of kdm in Caldera and Mandrake Linux, and possibly other distributions, allows XDMCP connections from any host, which allows2000-10-13
CVE-2000-0374 (CRITICAL CVSS 10) | The default configuration of kdm in | cvebase.io