4

CVE-2006-2449

KDE Display Manager (KDM) in KDE 3.2.0 up to 3.5.3 allows local users to read arbitrary files via a symlink attack related to the session type for login.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
KdeKde Version3.2
KdeKde Version3.2.1
KdeKde Version3.2.2
KdeKde Version3.2.3
KdeKde Version3.3
KdeKde Version3.3.1
KdeKde Version3.3.2
KdeKde Version3.4
KdeKde Version3.4.1
KdeKde Version3.4.2
KdeKde Version3.4.3
KdeKde Version3.5
KdeKde Version3.5.2
KdeKde Version3.5.3
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.38% 0.292
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 4 1.9 6.9
AV:L/AC:H/Au:N/C:C/I:N/A:N
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/20602
Vendor Advisory
http://secunia.com/advisories/20660
Vendor Advisory
http://secunia.com/advisories/20674
Vendor Advisory
http://secunia.com/advisories/20702
Vendor Advisory
http://secunia.com/advisories/20785
Vendor Advisory
http://secunia.com/advisories/20869
Vendor Advisory
http://secunia.com/advisories/20890
Vendor Advisory
http://secunia.com/advisories/21662
Vendor Advisory
http://securitytracker.com/id?1016297
http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.444467
http://www.debian.org/security/2006/dsa-1156
Vendor Advisory
http://www.gentoo.org/security/en/glsa/glsa-200606-23.xml
http://www.kde.org/info/security/advisory-20060614-1.txt
Vendor Advisory
http://www.mandriva.com/security/advisories?name=MDKSA-2006:105
http://www.mandriva.com/security/advisories?name=MDKSA-2006:106
http://www.novell.com/linux/security/advisories/2006_39_kdm.html
Vendor Advisory
http://www.osvdb.org/26511
http://www.redhat.com/support/errata/RHSA-2006-0548.html
Patch
Vendor Advisory
http://www.securityfocus.com/archive/1/437133/100/0/threaded
http://www.securityfocus.com/archive/1/437322/100/0/threaded
http://www.securityfocus.com/bid/18431
http://www.vupen.com/english/advisories/2006/2355
https://exchange.xforce.ibmcloud.com/vulnerabilities/27181
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9844
https://usn.ubuntu.com/301-1/