← back
CVE-2005-2494

CVE-2005-2494

EPSS 0.4%
kcheckpass in KDE 3.2.0 up to 3.4.2 allows local users to gain root access via a symlink attack on lock files.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
ftp://ftp.kde.org/pub/kde/security_patches/post-3.4.2-kdebase-kcheckpass.diffhttp://marc.info/?l=bugtraq&m=112603999215453&w=2http://marc.info/?l=bugtraq&m=112611555928169&w=2http://secunia.com/advisories/16692http://secunia.com/advisories/18139http://secunia.com/advisories/21481https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9388http://www.debian.org/security/2005/dsa-815http://www.kde.org/info/security/advisory-20050905-1.txthttp://www.mandriva.com/security/advisories?name=MDKSA-2005:160http://www.redhat.com/support/errata/RHSA-2006-0582.htmlhttp://www.securityfocus.com/bid/14736