CVE Vulnerabilities

CVE-2004-0419

Published: Aug 18, 2004 | Modified: Oct 11, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

XDM in XFree86 opens a chooserFd TCP socket even when DisplayManager.requestPort is 0, which could allow remote attackers to connect to the port, in violation of the intended restrictions.

Affected Software

Name Vendor Start Version End Version
X11r6 X.org 6.7.0 6.7.0
Xdm Xfree86_project cvs cvs
Red Hat Enterprise Linux 3 RedHat XFree86-0:4.3.0-69.EL *
Xorg Ubuntu dapper *
Xorg Ubuntu devel *
Xorg Ubuntu edgy *
Xorg Ubuntu feisty *

References