CVE-2007-3381 in Display Managerinfo

Summary

The GDM daemon in GNOME Display Manager (GDM) before 2.14.13, 2.16.x before 2.16.7, 2.18.x before 2.18.4, and 2.19.x before 2.19.5 does not properly handle NULL return values from the g_strsplit function, which allows local users to cause a denial of service (persistent daemon crash) via a crafted command to the daemon s socket, related to (1) gdm.c and (2) gdmconfig.c in daemon/, and (3) gdmconfig.c and (4) gdmflexiserver.c in gui/.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Reservation

06/25/2007

Disclosure

08/07/2007

Moderation

VulDB entry created

Entries

1: VDB-3227

CPE

ready

CWE

CWE-20 (Confirmed)

CVSS

4.8

EPSS

0.00079

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2007-3381
NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-3381
CVE Details	https://www.cvedetails.com/cve/CVE-2007-3381/

◂ Previous Overview Next ▸

Do you need the next level of professionalism?

Upgrade your account now!