CVE-2006-2449

Published Jun 15, 2006

Last updated 3 months ago

CVSS info 4.0

Overview

Description: KDE Display Manager (KDM) in KDE 3.2.0 up to 3.5.3 allows local users to read arbitrary files via a symlink attack related to the session type for login.
Source: secalert@redhat.com
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 4
Impact score: 6.9
Exploitability score: 1.9
Vector string: AV:L/AC:H/Au:N/C:C/I:N/A:N

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Hype score: Not currently trending

Evaluator

Comment: -
Impact: -
Solution: -

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:kde:kde:3.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "82F69843-978D-4686-BC5B-1D09DA4A21BD"
          },
          {
            "criteria": "cpe:2.3:o:kde:kde:3.2.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "ACEE0AED-7918-41E9-A902-AC4070E03132"
          },
          {
            "criteria": "cpe:2.3:o:kde:kde:3.2.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "81E19472-47B4-4398-A188-CA5A5D3E7060"
          },
          {
            "criteria": "cpe:2.3:o:kde:kde:3.2.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D17407A2-089E-43A5-9BD5-EFF966F5CC16"
          },
          {
            "criteria": "cpe:2.3:o:kde:kde:3.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9C4B436D-8D6A-473E-B707-26147208808B"
          },
          {
            "criteria": "cpe:2.3:o:kde:kde:3.3.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1E26B353-4985-4116-B97A-5767CDC732F1"
          },
          {
            "criteria": "cpe:2.3:o:kde:kde:3.3.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9F7180B3-03AC-427C-8CAD-FE06F81C4FF1"
          },
          {
            "criteria": "cpe:2.3:o:kde:kde:3.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "442021C9-BE4D-4BC9-8114-8BEFA9EC1232"
          },
          {
            "criteria": "cpe:2.3:o:kde:kde:3.4.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7036AE90-C7E0-48CE-805D-3F1E04852675"
          },
          {
            "criteria": "cpe:2.3:o:kde:kde:3.4.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8D49AE92-BA00-4A8E-BBFE-1BE994CFA3CF"
          },
          {
            "criteria": "cpe:2.3:o:kde:kde:3.4.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "29911CA1-ECFD-476F-8C85-EA0C6C143DC5"
          },
          {
            "criteria": "cpe:2.3:o:kde:kde:3.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D17CEFEB-9166-4426-92E1-D8F61D5F5D4C"
          },
          {
            "criteria": "cpe:2.3:o:kde:kde:3.5.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "67C992C7-E81D-443B-ACE8-B92F8A36C1FD"
          },
          {
            "criteria": "cpe:2.3:o:kde:kde:3.5.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4EAC287B-1AB4-43F3-AC26-EDA689A004B0"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Evaluator

Configurations

References