CVE-2006-6105

N/A Unknown

Published: December 15, 2006 Modified: April 23, 2026

Description

Format string vulnerability in the host chooser window (gdmchooser) in GNOME Foundation Display Manager (gdm) allows local users to execute arbitrary code via format string specifiers in a hostname, which are used in an error dialog.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://ftp.acc.umu.se/pub/GNOME/sources/gdm/2.17/gdm-2.17.4.news

Source: secalert@redhat.com

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=453

Source: secalert@redhat.com

Vendor Advisory

http://secunia.com/advisories/23381

Source: secalert@redhat.com

http://secunia.com/advisories/23385

Source: secalert@redhat.com

http://secunia.com/advisories/23387

Source: secalert@redhat.com

http://secunia.com/advisories/23409

Source: secalert@redhat.com

http://securitytracker.com/id?1017320

Source: secalert@redhat.com

Patch

http://securitytracker.com/id?1017383

Source: secalert@redhat.com

http://www.mandriva.com/security/advisories?name=MDKSA-2006:231

Source: secalert@redhat.com

http://www.novell.com/linux/security/advisories/2006_29_sr.html

Source: secalert@redhat.com

http://www.osvdb.org/30848

Source: secalert@redhat.com

http://www.securityfocus.com/bid/21597

Source: secalert@redhat.com

Patch

http://www.ubuntu.com/usn/usn-396-1

Source: secalert@redhat.com

http://www.vupen.com/english/advisories/2006/5015

Source: secalert@redhat.com

https://exchange.xforce.ibmcloud.com/vulnerabilities/30896

Source: secalert@redhat.com

http://ftp.acc.umu.se/pub/GNOME/sources/gdm/2.17/gdm-2.17.4.news