CVE-2001-1086

XFree86 3.3-3.3.3 - Info Disclosure

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2001-1086. PoCs published by ntf & sky.

AI-analyzed exploit summary This exploit targets a vulnerability in xdm (X Display Manager) where the session cookie is generated using predictable values from gettimeofday(). The PoC brute-forces the cookie by iterating through possible values derived from the timestamp.

Description

XDM in XFree86 3.3 and 3.3.3 generates easily guessable cookies using gettimeofday() when compiled with the HasXdmXauth option, which allows remote attackers to gain unauthorized access to the X display via a brute force attack.

Exploits (1)

exploitdb WORKING POC VERIFIED
by ntf & sky · cremoteunix
https://www.exploit-db.com/exploits/20993

This exploit targets a vulnerability in xdm (X Display Manager) where the session cookie is generated using predictable values from gettimeofday(). The PoC brute-forces the cookie by iterating through possible values derived from the timestamp.

Classification
Working Poc 95%
Attack Type
Auth Bypass
Complexity
Moderate
Reliability
Reliable
Target: xdm (XFree86 X Display Manager)
No auth needed
Prerequisites: xdm compiled without WrapHelp.c · access to the target's X11 socket
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/6808
Vendor Advisory mailing-list x_refsource_bugtraq
http://online.securityfocus.com/archive/1/195008
Exploit, Vendor Advisory mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/194907
Exploit, Patch, Vendor Advisory vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/2985

Scores

EPSS 0.0284
EPSS Percentile 84.9%

Details

Status published
Products (2)
xfree86_project/x11r6 3.3
xfree86_project/x11r6 3.3.3
Published Jul 04, 2001
Tracked Since Feb 18, 2026