CVE-2003-0690 in KDE
Сводка (Английский)
KDM in KDE 3.1.3 and earlier does not verify whether the pam_setcred function call succeeds, which may allow attackers to gain root privileges by triggering error conditions within PAM modules, as demonstrated in certain configurations of the MIT pam_krb5 module.
Резервировать
14.08.2003
Раскрытие
06.10.2003
Записи
VulDB provides additional information and datapoints for this CVE:
| ИД | Уязвимость | CWE | Экс | Кон | CVE |
|---|---|---|---|---|---|
| 20848 | KDE PAM Module pam_setcred эскалация привилегий | 269 | Не определено | Официальное исправление | CVE-2003-0690 |