← CVECheck
HomeVulnerabilities

CVE-2001-1086 — HIGH severity vulnerability (XDM in XFree86 3.3 and 3.3.3 generates easily guessable cook)

XDM in XFree86 3.3 and 3.3.3 generates easily guessable cookies using gettimeofday() when compiled with the HasXdmXauth option, which allows remote attackers to gain unauthorized access to the X display via a brute force attack.

CVE IDCVE-2001-1086
SeverityHIGH
CVSS score7.5
CVSS vectorAV:N/AC:L/Au:N/C:P/I:P/A:P
CWENVD-CWE-Other
StatusModified
Published2001-07-04
Last modified2026-04-16
DescriptionXDM in XFree86 3.3 and 3.3.3 generates easily guessable cookies using gettimeofday() when compiled with the HasXdmXauth option, which allows remote attackers to gain unauthorized access to the X display via a brute force attack.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →