CVE-2006-3742

CRITICAL

10.0

CVSS Severity Score

EPSS Score0.1510%

EPSS Percentile8.35th

PublishedSep 6, 2006

Last ModifiedApr 16, 2026

Vulnerability Description

The KDE PAM configuration shipped with Fedora Core 5 causes KDM passwords to be cached, which allows attackers to login without a password by attempting to log in multiple times.

Affected Platforms (CPE)

📦

Kde

Kdebase

= 3.5.4_0.4.fc5

References & Advisories

🔗 http://lwn.net/Alerts/197302/

Related Vulnerabilities

CVE-2010-09236.9

Race condition in workspace/krunner/lock/lockdlg.cc in the KRunner lock module in kdebase in KDE SC 4.4.0 allows physically proxim...

CVE-2007-59634.7

Unspecified vulnerability in kdebase allows local users to cause a denial of service (KDM login inaccessible, or resource consumpt...

CVE-2006-29334.6

kdesktop_lock in kdebase before 3.1.3-5.11 for KDE in Red Hat Enterprise Linux (RHEL) 3 does not properly terminate, which can pre...

CVE-2026-121917.8

A vulnerability was found in Comma AI Openpilot 0.11. This issue affects the function pickle.load/pickle.loads of the file selfdri...