CVE-2003-0794Uncontrolled Resource Consumption in GDM

3 documents3 sources
Severity
2.1LOWNVD
EPSS
0.1%
top 75.80%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Gnome GDM
Timeline
PublishedNov 17
Latest updateApr 29

Description

GDM 2.4.4.x before 2.4.4.4, and 2.4.1.x before 2.4.1.7, does not limit the number or duration of commands and uses a blocking socket connection, which allows attackers to cause a denial of service (resource exhaustion) by sending commands and not reading the results.

CVSS vector

AV:L/AC:L/C:N/I:N/A:PExploitability: 3.9 | Impact: 2.9

Affected Packages1 packages

NVDgnome/gdm9 versions+8

Patches

Patch: www.securityfocus.comPatch: www.securityfocus.com

🔴Vulnerability Details

2
GHSA
GHSA-6ccf-vqxf-f729: GDM 22022-04-29
CVEList
CVE-2003-0794: GDM 22003-10-21
CVE-2003-0794 — Uncontrolled Resource Consumption | cvebase