CVE-2000-0374

The default configuration of kdm in Caldera and Mandrake Linux, and possibly other distributions, allows XDMCP connections from any host, which allows remote attackers to obtain sensitive information or bypass additional access restrictions.

Published: Aug 22, 1999
Updated: Apr 13, 2023
CVE: CVE-2000-0374
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 10
AV:N/AC:L/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
caldera / openlinux	2.2	2.2.x
caldera / openlinux	2.3	2.3.x

ftp://ftp.calderasystems.com/pub/OpenLinux/security/CSSA-1999-021.0.txt
http://frontal2.mandriva.com/security/advisories?name=MDKSA-2002:025
http://www.securityfocus.com/bid/1446
https://exchange.xforce.ibmcloud.com/vulnerabilities/4856

Vulnerability Database

289,599

CVE-2000-0374