Vulnerability in Gnome Gdm
CVE-2003-0547
GDM before 2.4.1.6, when using the "examine session errors" feature, allows local users to read arbitrary files via a symlink attack on the ~/.xsession-errors file.
EPSS: 0.004 (28.1th percentile) — read the EPSS interpretation.
Affected products
- Gnome Gdm — versions 2.4.1, 2.4.1.1, 2.4.1.2
- Redhat Kdebase — versions 2.4.0.7.13, 2.4.1.3.5
- N/a — versions n/a
References
- cve@mitre.org (vendor-advisory, x_refsource_CONECTIVA)
- cve@mitre.org (x_refsource_REDHAT, vendor-advisory, Patch, Vendor Advisory)
- cve@mitre.org (x_refsource_OVAL, signature, vdb-entry)
- cve@mitre.org (x_refsource_CONFIRM)
- cve@mitre.org (mailing-list, x_refsource_BUGTRAQ)