CVE-2007-3381 (GCVE-0-2007-3381)

Vulnerability from cvelistv5 – Published: 2007-08-07 10:00 – Updated: 2024-08-07 14:14
VLAI
Summary
The GDM daemon in GNOME Display Manager (GDM) before 2.14.13, 2.16.x before 2.16.7, 2.18.x before 2.18.4, and 2.19.x before 2.19.5 does not properly handle NULL return values from the g_strsplit function, which allows local users to cause a denial of service (persistent daemon crash) via a crafted command to the daemon's socket, related to (1) gdm.c and (2) gdmconfig.c in daemon/, and (3) gdmconfig.c and (4) gdmflexiserver.c in gui/.
Severity
No CVSS data available.
CWE
  • n/a
Assigner
References
URL Tags
http://security.gentoo.org/glsa/glsa-200709-11.xml vendor-advisoryx_refsource_GENTOO
http://ftp.gnome.org/pub/GNOME/sources/gdm/2.16/g… x_refsource_CONFIRM
http://secunia.com/advisories/26313 third-party-advisoryx_refsource_SECUNIA
http://www.vupen.com/english/advisories/2007/2781 vdb-entryx_refsource_VUPEN
http://www.securityfocus.com/bid/25191 vdb-entryx_refsource_BID
http://secunia.com/advisories/26879 third-party-advisoryx_refsource_SECUNIA
https://oval.cisecurity.org/repository/search/def… vdb-entrysignaturex_refsource_OVAL
https://issues.rpath.com/browse/RPL-1599 x_refsource_CONFIRM
http://ftp.gnome.org/pub/GNOME/sources/gdm/2.14/g… x_refsource_CONFIRM
http://secunia.com/advisories/26368 third-party-advisoryx_refsource_SECUNIA
http://www.mandriva.com/security/advisories?name=… vendor-advisoryx_refsource_MANDRIVA
http://ftp.gnome.org/pub/GNOME/sources/gdm/2.18/g… x_refsource_CONFIRM
http://www.securityfocus.com/archive/1/475451/30/… mailing-listx_refsource_BUGTRAQ
http://ftp.gnome.org/pub/GNOME/sources/gdm/2.19/g… x_refsource_CONFIRM
http://www.redhat.com/support/errata/RHSA-2007-07… vendor-advisoryx_refsource_REDHAT
http://www.securitytracker.com/id?1018523 vdb-entryx_refsource_SECTRACK
http://secunia.com/advisories/26900 third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/26520 third-party-advisoryx_refsource_SECUNIA
Date Public
2007-07-30 00:00
Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T14:14:12.887Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "GLSA-200709-11",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "http://security.gentoo.org/glsa/glsa-200709-11.xml"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://ftp.gnome.org/pub/GNOME/sources/gdm/2.16/gdm-2.16.7.changes"
          },
          {
            "name": "26313",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/26313"
          },
          {
            "name": "ADV-2007-2781",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2007/2781"
          },
          {
            "name": "25191",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/25191"
          },
          {
            "name": "26879",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/26879"
          },
          {
            "name": "oval:org.mitre.oval:def:10887",
            "tags": [
              "vdb-entry",
              "signature",
              "x_refsource_OVAL",
              "x_transferred"
            ],
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10887"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://issues.rpath.com/browse/RPL-1599"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://ftp.gnome.org/pub/GNOME/sources/gdm/2.14/gdm-2.14.13.news"
          },
          {
            "name": "26368",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/26368"
          },
          {
            "name": "MDKSA-2007:169",
            "tags": [
              "vendor-advisory",
              "x_refsource_MANDRIVA",
              "x_transferred"
            ],
            "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2007:169"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://ftp.gnome.org/pub/GNOME/sources/gdm/2.18/gdm-2.18.4.news"
          },
          {
            "name": "20070803 FLEA-2007-0041-1 gdm",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/archive/1/475451/30/5550/threaded"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://ftp.gnome.org/pub/GNOME/sources/gdm/2.19/gdm-2.19.5.news"
          },
          {
            "name": "RHSA-2007:0777",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://www.redhat.com/support/errata/RHSA-2007-0777.html"
          },
          {
            "name": "1018523",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id?1018523"
          },
          {
            "name": "26900",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/26900"
          },
          {
            "name": "26520",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/26520"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2007-07-30T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "The GDM daemon in GNOME Display Manager (GDM) before 2.14.13, 2.16.x before 2.16.7, 2.18.x before 2.18.4, and 2.19.x before 2.19.5 does not properly handle NULL return values from the g_strsplit function, which allows local users to cause a denial of service (persistent daemon crash) via a crafted command to the daemon\u0027s socket, related to (1) gdm.c and (2) gdmconfig.c in daemon/, and (3) gdmconfig.c and (4) gdmflexiserver.c in gui/."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-10-16T14:57:01.000Z",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "name": "GLSA-200709-11",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "http://security.gentoo.org/glsa/glsa-200709-11.xml"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://ftp.gnome.org/pub/GNOME/sources/gdm/2.16/gdm-2.16.7.changes"
        },
        {
          "name": "26313",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/26313"
        },
        {
          "name": "ADV-2007-2781",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2007/2781"
        },
        {
          "name": "25191",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/25191"
        },
        {
          "name": "26879",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/26879"
        },
        {
          "name": "oval:org.mitre.oval:def:10887",
          "tags": [
            "vdb-entry",
            "signature",
            "x_refsource_OVAL"
          ],
          "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10887"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://issues.rpath.com/browse/RPL-1599"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://ftp.gnome.org/pub/GNOME/sources/gdm/2.14/gdm-2.14.13.news"
        },
        {
          "name": "26368",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/26368"
        },
        {
          "name": "MDKSA-2007:169",
          "tags": [
            "vendor-advisory",
            "x_refsource_MANDRIVA"
          ],
          "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2007:169"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://ftp.gnome.org/pub/GNOME/sources/gdm/2.18/gdm-2.18.4.news"
        },
        {
          "name": "20070803 FLEA-2007-0041-1 gdm",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://www.securityfocus.com/archive/1/475451/30/5550/threaded"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://ftp.gnome.org/pub/GNOME/sources/gdm/2.19/gdm-2.19.5.news"
        },
        {
          "name": "RHSA-2007:0777",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://www.redhat.com/support/errata/RHSA-2007-0777.html"
        },
        {
          "name": "1018523",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id?1018523"
        },
        {
          "name": "26900",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/26900"
        },
        {
          "name": "26520",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/26520"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2007-3381",
    "datePublished": "2007-08-07T10:00:00.000Z",
    "dateReserved": "2007-06-25T00:00:00.000Z",
    "dateUpdated": "2024-08-07T14:14:12.887Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2007-3381",
      "date": "2026-07-01",
      "epss": "0.00327",
      "percentile": "0.24533"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2007-3381\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2007-08-07T10:17:00.000\",\"lastModified\":\"2026-04-23T00:35:47.467\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"The GDM daemon in GNOME Display Manager (GDM) before 2.14.13, 2.16.x before 2.16.7, 2.18.x before 2.18.4, and 2.19.x before 2.19.5 does not properly handle NULL return values from the g_strsplit function, which allows local users to cause a denial of service (persistent daemon crash) via a crafted command to the daemon\u0027s socket, related to (1) gdm.c and (2) gdmconfig.c in daemon/, and (3) gdmconfig.c and (4) gdmflexiserver.c in gui/.\"},{\"lang\":\"es\",\"value\":\"El demonio GDM en GNOME Display Mangager (GDM) anterior a 2.14.13, 2.16.x anterior a 2.16.7, 2.18.x anterior a 2.18.4, y 2.19.x anterir a 2.19.5 no maneja adecuadamente valores de retorno nulos (NULL) de la funci\u00f3n g_strsplit, lo cual permite a usuarios locales provocar una denegaci\u00f3n de servicio (ca\u00edda persistente del demonio) mediante un comando manipulado hacia el socket del demonio, relacionado con (1) gdm.c y (2) gdmconfig.c en daemon/, y (3) gdmconfig.c y (4) gdmflexiserver.c en gui/.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:M/Au:S/C:N/I:N/A:P\",\"baseScore\":1.5,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"SINGLE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"LOW\",\"exploitabilityScore\":2.7,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-20\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnome:gdm:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"2.14.12\",\"matchCriteriaId\":\"4A68E297-5F50-4DFA-AF70-06B016B852D2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnome:gdm:0.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"501714EA-1C5D-4EA7-B069-8E6521574AC4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnome:gdm:1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E2D650E6-F568-4B7F-8913-3DC10E8F4201\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnome:gdm:2.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3296F925-6D41-4DA7-BDB2-3B04CF22A53B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnome:gdm:2.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7960EC63-69CF-474C-996C-E431CCDD07E9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnome:gdm:2.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A38317A3-3725-4F32-B675-00F8FB288F51\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnome:gdm:2.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C4F01AD1-EB1B-4932-B8D7-CBC899B1A02E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnome:gdm:2.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B760EB2A-6461-477F-B7E5-857117E21AE3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnome:gdm:2.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"973BF2BF-BBF7-41F6-9E38-5150BC8AE7B6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnome:gdm:2.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7756E66E-2296-4B20-ABC0-B1A2ACF2657B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnome:gdm:2.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BC30F499-35B6-40BB-A420-A55F6993DF3A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnome:gdm:2.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"70640B9F-4EAA-4513-80E4-9DD4A862F27D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnome:gdm:2.14.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9B84ACF2-E06C-47E5-B221-78285238BA78\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnome:gdm:2.14.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B1F316D7-4D67-4B2E-8418-B89466AA5CDC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnome:gdm:2.14.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6721626F-3335-446F-95C4-7B150C2FE2E2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnome:gdm:2.14.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CA624500-6AC3-4991-A185-619E3F76A384\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnome:gdm:2.14.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1544DE39-DA4B-452C-A38C-D15E0EC5148F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnome:gdm:2.14.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B261D656-8C46-4F0A-93DD-8540B21BC1FC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnome:gdm:2.14.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"24A39F8A-D0F4-480E-904C-8FB906C6D72F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnome:gdm:2.14.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4210033A-0FD1-43A7-BCDC-9A4ADFEBB1DA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnome:gdm:2.14.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BBD5D3BD-9988-4421-8C2B-1EE907CFA986\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnome:gdm:2.14.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2F8D697C-AD36-446A-945A-0746898FFD5C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnome:gdm:2.14.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DF3072E1-A8AA-4C7B-B395-3F490943FED3\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnome:gdm:2.14.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6721626F-3335-446F-95C4-7B150C2FE2E2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnome:gdm:2.14.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CA624500-6AC3-4991-A185-619E3F76A384\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnome:gdm:2.14.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1544DE39-DA4B-452C-A38C-D15E0EC5148F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnome:gdm:2.14.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B261D656-8C46-4F0A-93DD-8540B21BC1FC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnome:gdm:2.16:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"832DE81E-18BB-4276-A6B0-F316A322E83E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnome:gdm:2.16.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D01F3328-9DB5-4C75-A9BD-96243975A362\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnome:gdm:2.16.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"24D361EF-B35F-46D9-9DF3-9254FFAD0A1F\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnome:gdm:2.18:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"638AAAB0-2077-49F1-A909-0814C94EF96E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnome:gdm:2.18.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F4E525EF-0702-42BD-AA45-00AB721DE9B4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnome:gdm:2.18.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"09B6D822-D0D6-423E-AE9A-7510C06005A3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnome:gdm:2.18.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"323B1859-30F3-4787-8A35-46A8189D4C5E\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnome:gdm:2.19:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"14C57E06-FBAB-4950-810D-ADDD74D271FE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnome:gdm:2.19.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F7359FE6-4BD1-4D3C-BCF5-6F2741FC1997\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnome:gdm:2.19.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7888E478-E756-48FB-B3E3-534873B5F1D8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnome:gdm:2.19.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4A82FCA7-76F6-48CE-8886-79AD9094EBF4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnome:gdm:2.19.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"75DCBC45-71FC-4850-A7E0-6051AE38E4C7\"}]}]}],\"references\":[{\"url\":\"http://ftp.gnome.org/pub/GNOME/sources/gdm/2.14/gdm-2.14.13.news\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://ftp.gnome.org/pub/GNOME/sources/gdm/2.16/gdm-2.16.7.changes\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://ftp.gnome.org/pub/GNOME/sources/gdm/2.18/gdm-2.18.4.news\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://ftp.gnome.org/pub/GNOME/sources/gdm/2.19/gdm-2.19.5.news\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/26313\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/26368\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/26520\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/26879\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/26900\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://security.gentoo.org/glsa/glsa-200709-11.xml\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDKSA-2007:169\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2007-0777.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.securityfocus.com/archive/1/475451/30/5550/threaded\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.securityfocus.com/bid/25191\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.securitytracker.com/id?1018523\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.vupen.com/english/advisories/2007/2781\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://issues.rpath.com/browse/RPL-1599\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10887\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://ftp.gnome.org/pub/GNOME/sources/gdm/2.14/gdm-2.14.13.news\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://ftp.gnome.org/pub/GNOME/sources/gdm/2.16/gdm-2.16.7.changes\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://ftp.gnome.org/pub/GNOME/sources/gdm/2.18/gdm-2.18.4.news\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://ftp.gnome.org/pub/GNOME/sources/gdm/2.19/gdm-2.19.5.news\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/26313\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/26368\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/26520\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/26879\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/26900\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://security.gentoo.org/glsa/glsa-200709-11.xml\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDKSA-2007:169\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2007-0777.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/archive/1/475451/30/5550/threaded\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/25191\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securitytracker.com/id?1018523\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.vupen.com/english/advisories/2007/2781\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://issues.rpath.com/browse/RPL-1599\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10887\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
  }
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.


Loading…

Loading…

Loading…

Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.

Sightings

Author Source Type Date Other

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Loading…

Detection rules are retrieved from Rulezet.

Loading…

Loading…