11 matches found
Slackware: Security Advisory (SSA:2006-178-01)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Gentoo Security Advisory GLSA 200606-23 (kdebase, KDM)
The remote host is missing updates announced in advisory GLSA 200606-23. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
openSUSE 10 Security Update : kdebase3-kdm (kdebase3-kdm-1609)
KDM stores the type of the previously used session in the user's home directory. By using a symlink users could trick kdm into also storing content of files that are normally not accesible by users CVE-2006-2449. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and packag...
SUSE-SA:2006:039: kdebase3-kdm
The remote host is missing the patch for the advisory SUSE-SA:2006:039 kdebase3-kdm. The KDE Display Manager KDM stores the type of the previously used session in the user's home directory. By using a symlink a local attacker could trick kdm into also storing content of files that are normally no...
Fedora Core 5 : kdebase-3.5.3-0.3.fc5 (2006-726)
Thu Jun 15 2006 Than Ngo 6:3.5.3-0.3.fc5 - fix BR - Wed Jun 14 2006 Than Ngo 6:3.5.3-0.2.fc5 - apply patch to to fix 194659, CVE-2006-2449 KDM symlink attack vulnerability thanks to KDE security team - Thu Jun 8 2006 Than Ngo 6:3.5.3-0.1.fc5 - update to 3.5.3 - Fri May 12 2006 Than Ngo...
[SECURITY] [DSA 1156-1] New kdebase packages fix information disclosure
-------------------------------------------------------------------------- Debian Security Advisory DSA 1156-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff August 27th, 2006 http://www.debian.org/security/faq -...
CentOS 4 : kdebase (CESA-2006:0548)
Updated kdebase packages that correct a security flaw in kdm are now available for Red Hat Enterprise Linux 4. This update has been rated as having important security impact by the Red Hat Security Response Team. The kdebase packages provide the core applications for KDE, the K Desktop Environmen...
SSA-2006-0628032502
New kdebase packages are available for Slackware 10.0, 10.1, 10.2, and -current to fix a security issue with KDM the KDE login manager which could be exploited by a local attacker to read any file on the system. The official KDE security advisory may be found here:...
CVE-2006-2449
KDE Display Manager KDM in KDE 3.2.0 up to 3.5.3 allows local users to read arbitrary files via a symlink attack related to the session type for login...
CVE-2006-2449
The CVE-2006-2449 entry concerns KDE Display Manager (KDM) in KDE 3.2.0 through 3.5.3. The issue arises from how KDM handles the session type for login, allowing a local attacker to read arbitrary files via a symlink attack to the session configuration. The vulnerability is local in scope and doe...
[USN-301-1] kdm vulnerability
=========================================================== Ubuntu Security Notice USN-301-1 June 14, 2006 kdebase vulnerability CVE-2006-2449 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 5.04 Ubuntu 5.10 Ubuntu 6.06 LT...