CVE-2000-0374

Published: Aug 22, 1999Modified: Apr 16, 2026

10.0

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 10.0 / Impact: 10.0

Source: NVD

Description

The default configuration of kdm in Caldera and Mandrake Linux, and possibly other distributions, allows XDMCP connections from any host, which allows remote attackers to obtain sensitive information or bypass additional access restrictions.

Affected (2)

Products: Caldera: Openlinux

Caldera

1 product

Openlinux

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Caldera Openlinux	Version 2.2
Caldera Openlinux	Version 2.3

References (8)

ftp://ftp.calderasystems.com/pub/OpenLinux/security/CSSA-1999-021.0.txt (unsafe URL)

Source: cve@mitre.org

http://frontal2.mandriva.com/security/advisories?name=MDKSA-2002:025

Source: cve@mitre.org

http://www.securityfocus.com/bid/1446

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/4856

Source: cve@mitre.org

ftp://ftp.calderasystems.com/pub/OpenLinux/security/CSSA-1999-021.0.txt (unsafe URL)

Source: af854a3a-2127-422b-91ae-364da2661108

http://frontal2.mandriva.com/security/advisories?name=MDKSA-2002:025

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/1446

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/4856

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.