CVE-2003-0690
CRITICAL
10.0
CVSS Severity Score
Vulnerability Description
KDM in KDE 3.1.3 and earlier does not verify whether the pam_setcred function call succeeds, which may allow attackers to gain root privileges by triggering error conditions within PAM modules, as demonstrated in certain configurations of the MIT pam_krb5 module.
Affected Platforms (CPE)
💻
Kde
Kde
= 1.1💻
Kde
Kde
= 1.1.1💻
Kde
Kde
= 1.1.2💻
Kde
Kde
= 1.2💻
Kde
Kde
= 2.0💻
Kde
Kde
= 2.0.1💻
Kde
Kde
= 2.0_beta💻
Kde
Kde
= 2.1💻
Kde
Kde
= 2.1.1💻
Kde
Kde
= 2.1.2💻
Kde
Kde
= 2.2💻
Kde
Kde
= 2.2.1💻
Kde
Kde
= 2.2.2💻
Kde
Kde
= 3.0💻
Kde
Kde
= 3.0.1💻
Kde
Kde
= 3.0.2💻
Kde
Kde
= 3.0.3💻
Kde
Kde
= 3.0.3a💻
Kde
Kde
= 3.0.4💻
Kde
Kde
= 3.0.5💻
Kde
Kde
= 3.0.5a💻
Kde
Kde
= 3.0.5b💻
Kde
Kde
= 3.1💻
Kde
Kde
= 3.1.1💻
Kde
Kde
= 3.1.1a💻
Kde
Kde
= 3.1.2💻
Kde