CVE-2017-11171

Bad reference counting in the context of accept_ice_connection() in gsm-xsmp-server.c in old versions of gnome-session up until version 2.29.92 allows a local attacker to establish ICE connections to gnome-session with invalid authentication data (an invalid magic cookie). Each failed authentication attempt will leak a file descriptor in gnome-session. When the maximum number of file descriptors is exhausted in the gnome-session process, it will enter an infinite loop trying to communicate without success, consuming 100% of the CPU. The graphical session associated with the gnome-session process will stop working correctly, because communication with gnome-session is no longer possible.

• CVE ID
• CVE-2017-11171

• Assigner
• cve@mitre.org

• Vulnerability Status
• Analyzed

• Published Version
• 2017-07-11T20:29:00

• Last Modified Date
• 2019-10-03T00:03:26

• Version
• 2.0

• Vector String
• AV:L/AC:L/Au:N/C:N/I:N/A:C

• Access Vector
• LOCAL

• Access Compatibility
• LOW

• Authentication
• NONE

• Confidentiality Impact
• NONE

• Integrity Impact
• NONE

• Availability Impact
• COMPLETE

• Base Score
• 4.9

• Severity
• MEDIUM

• Exploitability Score
• 3.9

• Impact Score
• 6.9

• Version
• 3.0

• Vector String
• CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

• Attack Vector
• LOCAL

• Attack Compatibility
• LOW

• Privileges Required
• LOW

• User Interaction
• NONE

• Scope
• UNCHANGED

• Confidentiality Impact
• NONE

• Availability Impact
• HIGH

• Base Score
• 5.5

• Base Severity
• MEDIUM

• Exploitability Score
• 1.8

• Impact Score
• 3.6