ID CVE-2006-6105
Summary Format string vulnerability in the host chooser window (gdmchooser) in GNOME Foundation Display Manager (gdm) allows local users to execute arbitrary code via format string specifiers in a hostname, which are used in an error dialog.
References
Vulnerable Configurations
  • cpe:2.3:a:gnome:gdm:2.14.1:*:*:*:*:*:*:*
    cpe:2.3:a:gnome:gdm:2.14.1:*:*:*:*:*:*:*
  • cpe:2.3:a:gnome:gdm:2.16:*:*:*:*:*:*:*
    cpe:2.3:a:gnome:gdm:2.16:*:*:*:*:*:*:*
  • cpe:2.3:a:gnome:gdm:2.16.1:*:*:*:*:*:*:*
    cpe:2.3:a:gnome:gdm:2.16.1:*:*:*:*:*:*:*
  • cpe:2.3:a:gnome:gdm:2.16.2:*:*:*:*:*:*:*
    cpe:2.3:a:gnome:gdm:2.16.2:*:*:*:*:*:*:*
CVSS
Base: 4.3 (as of 20-07-2017 - 01:34)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
LOCAL LOW SINGLE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:L/AC:L/Au:S/C:P/I:P/A:P
refmap via4
bid 21597
confirm http://ftp.acc.umu.se/pub/GNOME/sources/gdm/2.17/gdm-2.17.4.news
idefense 20061214 GNOME Foundation Display Manager gdmchooser Format String Vulnerability
mandriva MDKSA-2006:231
osvdb 30848
sectrack
  • 1017320
  • 1017383
secunia
  • 23381
  • 23385
  • 23387
  • 23409
suse SUSE-SR:2006:029
ubuntu USN-396-1
vupen ADV-2006-5015
xf gdmchooser-host-chooser-format-string(30896)
statements via4
contributor Mark J Cox
lastmodified 2007-03-14
organization Red Hat
statement Not vulnerable. This flaw was first introduced in gdm version 2.14. Therefore these issues did not affect the earlier versions of gdm as shipped with Red Hat Enterprise Linux 2.1, 3, or 4. Red Hat Enterprise Linux 5 is not vulnerable to this issue as it contains a backported patch.
Last major update 20-07-2017 - 01:34
Published 15-12-2006 - 02:28
Last modified 20-07-2017 - 01:34
Back to Top