First published: Wed Oct 05 2005(Updated: )
gnome-pty-helper in GNOME libzvt2 and libvte4 allows local users to spoof the logon hostname via a modified DISPLAY environment variable. NOTE: the severity of this issue has been disputed.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
libvte | ||
GNOME libraries | =1.4.2.19 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2005-0023 has been disputed, with opinions varying on its impact.
To fix CVE-2005-0023, update the affected GNOME libraries to the latest secure version.
Local users of GNOME libzvt2 and libvte4 are affected by CVE-2005-0023 due to the vulnerability that allows hostname spoofing.
The consequences of CVE-2005-0023 include the potential for local users to spoof the logon hostname, which can lead to security risks.
CVE-2005-0023 impacts GNOME libvte4 and libzvt2, specifically version 1.4.2.19 of libzvt2.