CVE-2003-0548

The X Display Manager Control Protocol (XDMCP) support for GDM before 2.4.1.6 allows attackers to cause a denial of service (daemon crash) when a chosen host expires, a different issue than CVE-2003-0549.

Published: Aug 27, 2003
Updated: Apr 13, 2023
CVE: CVE-2003-0548
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:N/I:N/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
redhat / kdebase	2.0_beta2.45	2.0_beta2.45.x
gnome / gdm	2.2.0	2.2.0.x
gnome / gdm	2.4.1	2.4.1.x
redhat / kdebase	2.2.3.1.20	2.2.3.1.20.x
redhat / kdebase	2.2.3.1.22	2.2.3.1.22.x
gnome / gdm	2.4.1.5	2.4.1.5.x
redhat / kdebase	2.4.0.7.13	2.4.0.7.13.x
gnome / gdm	2.4.1.2	2.4.1.2.x
gnome / gdm	2.4.1.3	2.4.1.3.x
gnome / gdm	2.4.1.6	2.4.1.6.x
gnome / gdm	2.4.1.1	2.4.1.1.x
gnome / gdm	2.4.1.4	2.4.1.4.x
redhat / kdebase	2.4.1.3.5	2.4.1.3.5.x
redhat / enterprise_linux	2.1	2.1.x
redhat / linux_advanced_workstation	2.1	2.1.x

http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000729
http://mail.gnome.org/archives/gnome-hackers/2003-August/msg00045.html
http://www.redhat.com/support/errata/RHSA-2003-258.html
http://www.redhat.com/support/errata/RHSA-2003-259.html
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A113

Vulnerability Database

289,599

CVE-2003-0548