← CVECheck
HomeVulnerabilities

CVE-2001-0191 — HIGH severity vulnerability (gnuserv before 3.12, as shipped with XEmacs, does not proper)

gnuserv before 3.12, as shipped with XEmacs, does not properly check the specified length of an X Windows MIT-MAGIC-COOKIE cookie, which allows remote attackers to execute arbitrary commands via a buffer overflow, or brute force authentication by using a short cookie length.

CVE IDCVE-2001-0191
SeverityHIGH
CVSS score10.0
CVSS vectorAV:N/AC:L/Au:N/C:C/I:C/A:C
CWECWE-120
StatusModified
Published2001-05-03
Last modified2026-04-16
Descriptiongnuserv before 3.12, as shipped with XEmacs, does not properly check the specified length of an X Windows MIT-MAGIC-COOKIE cookie, which allows remote attackers to execute arbitrary commands via a buffer overflow, or brute force authentication by using a short cookie length.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →