Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> Slackware Local Security Checks >> SSA-2006-178-01 kdebase kdm local file reading vulnerability


Vulnerability Assessment Details

SSA-2006-178-01 kdebase kdm local file reading vulnerability

Vulnerability Assessment Summary
SSA-2006-178-01 kdebase kdm local file reading vulnerability

Detailed Explanation for this Vulnerability Assessment

New kdebase packages are available for Slackware 10.0, 10.1, 10.2, and -current
to fix a security issue with KDM (the KDE login manager) which could be
exploited by a local attacker to read any file on the system.

The official KDE security advisory may be found here:
http://www.kde.org/info/security/advisory-20060614-1.txt

More details about this issue may be found in the Common
Vulnerabilities and Exposures (CVE) database:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2449




Networks Security ID:

Vulnerability Assessment Copyright: This script is Copyright (C) 2006 Michel Arboi

Cables, Connectors

HP ProLiant BL460C Series G6 Blade Server 2x Xeon 12 CORE X5645 48GB 2x 146GB HD
$298.39
HP ProLiant BL460C Series G6 Blade Server 2x Xeon 12 CORE X5645 48GB 2x 146GB HD pictureDell PowerEdge MF792 15FP 1U RackMount Server KVM 15" TFT with Rail and Keyboard
$248.4
Dell PowerEdge MF792 15FP 1U RackMount Server KVM 15Samsung 64GB DDR3 8RX4 PC3L-10600L 1333MHz ECC REG Registered LR SERVER MEMORY
$460.0
Samsung 64GB DDR3 8RX4 PC3L-10600L 1333MHz ECC REG Registered LR SERVER MEMORY pictureHP TFT5600 RKM 237259-006 1U 15" Rackmount Keyboard Monitor Drawer Console
$217.35
HP TFT5600 RKM 237259-006 1U 15


Discussions

No Discussions have been posted on this vulnerability.