Unrated severityNVD Advisory· Published May 3, 2001· Updated Jun 16, 2026
CVE-2001-0191
CVE-2001-0191
Description
gnuserv before 3.12, as shipped with XEmacs, does not properly check the specified length of an X Windows MIT-MAGIC-COOKIE cookie, which allows remote attackers to execute arbitrary commands via a buffer overflow, or brute force authentication by using a short cookie length.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:andynorman:gnuserv:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:andynorman:gnuserv:*:*:*:*:*:*:*:*range: <3.12
- (no CPE)range: <3.12
Patches
Vulnerability mechanics
References
5- archives.neohapsis.com/archives/bugtraq/2001-02/0030.htmlnvdBroken LinkPatchVendor Advisory
- www.linux-mandrake.com/en/security/2001/MDKSA-2001-019.php3nvdBroken LinkPatch
- www.redhat.com/support/errata/RHSA-2001-010.htmlnvdBroken LinkPatch
- www.redhat.com/support/errata/RHSA-2001-011.htmlnvdBroken LinkPatch
- exchange.xforce.ibmcloud.com/vulnerabilities/6056nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.