CVE-2000-0374

The default configuration of kdm in Caldera and Mandrake Linux, and possibly other distributions, allows XDMCP connections from any host, which allows remote attackers to obtain sensitive information or bypass additional access restrictions.

Score10.0
Access VectorNETWORK
Access ComplexityLOW
AuthenticationNONE
Confidentiality ImpactCOMPLETE
Integrity ImpactCOMPLETE
Availability ImpactCOMPLETE
Published1999-08-22 12:00:00.000-04
Last Modified2017-10-09 09:29:07.000-04

Vulnerable Software List

VendorProductVersions
Caldera Openlinux 2.2, 2.3

References

SourceLink
CALDERACSSA-1999-021.0
MANDRAKEMDKSA-2002:025
BID1446
XFxdmcp-kdm-default-configuration(4856)