XDM in XFree86 3.3 and 3.3.3 generates easily guessable cookies using gettimeofday() when compiled with the HasXdmXauth option, which allows remote malicious users to gain unauthorized access to the X display via a brute force attack.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
xfree86 project x11r6 3.3 |
||
xfree86 project x11r6 3.3.3 |