Lucene search
K

4 matches found

NVD
NVD
added 2003/10/06 4:0 a.m.24 views

CVE-2003-0690

KDM in KDE 3.1.3 and earlier does not verify whether the pamsetcred function call succeeds, which may allow attackers to gain root privileges by triggering error conditions within PAM modules, as demonstrated in certain configurations of the MIT pamkrb5 module...

10CVSS6.5AI score0.02651EPSS
Exploits0References13
CVE
CVE
added 2003/09/18 4:0 a.m.105 views

CVE-2003-0690

Concretely, CVE-2003-0690 affects KDE kdebase (KDM in KDE 3.1.3 and earlier). The flaw is that kdebase does not verify whether pam_setcred succeeds, which can allow a root privilege escalation under certain PAM module configurations (notably MIT pam_krb5). Public sources in connected docs referen...

10CVSS6.3AI score0.02651EPSS
Exploits0References13Affected Software1
Cvelist
Cvelist
added 2003/09/18 4:0 a.m.39 views

CVE-2003-0690

KDM in KDE 3.1.3 and earlier does not verify whether the pamsetcred function call succeeds, which may allow attackers to gain root privileges by triggering error conditions within PAM modules, as demonstrated in certain configurations of the MIT pamkrb5 module...

6.4AI score0.02651EPSS
Exploits0References13
securityvulns
securityvulns
added 2003/09/17 12:0 a.m.44 views

[KDE SECURITY ADVISORY] KDM vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 KDE Security Advisory: KDM vulnerabilities Original Release Date: 2003-09-16 URL: http://www.kde.org/info/security/advisory-20030916-1.txt 0. References http://cert.uni-stuttgart.de/archive/suse/security/2002/12/ msg00101.html...

10CVSS0.02678EPSS
Exploits0
Rows per page
Query Builder