CVE-2007-4569 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2007-4569
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2007-4569

Description: backend/session.c in KDM in KDE 3.3.0 through 3.5.7, when autologin is configured and "shutdown with password" is enabled, allows remote attackers to bypass the password requirement and login to arbitrary accounts via unspecified vectors.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/36711 UBUNTU http://www.ubuntu.com/usn/usn-517-1 SUSE http://lists.opensuse.org/opensuse-security-announce/2007-10/msg00006.html ST 1018724 SAID Secunia Advisory: SA27089 Secunia Advisory: SA26977 Secunia Advisory: SA26929 Secunia Advisory: SA26894 Secunia Advisory: SA26904 Secunia Advisory: SA26915 Secunia Advisory: SA27106 Secunia Advisory: SA27096 Secunia Advisory: SA27180 Secunia Advisory: SA27271 REDHAT http://www.redhat.com/support/errata/RHSA-2007-0905.html MANDRIVA http://www.mandriva.com/security/advisories?name=MDKSA-2007:190 GENTOO http://security.gentoo.org/glsa/glsa-200710-15.xml FEDORA DEBIAN http://www.debian.org/security/2007/dsa-1376 CONFIRM http://www.kde.org/info/security/advisory-20070919-1.txt BID 25730

Return to the previous page.