CVE-2006-3742

KDE PAM Configuration - Unauthenticated Login via Password Cache

Title source: llm
STIX 2.1

Description

The KDE PAM configuration shipped with Fedora Core 5 causes KDM passwords to be cached, which allows attackers to login without a password by attempting to log in multiple times.

References (1)

Core 1
Core References
Patch vendor-advisory x_refsource_fedora
http://lwn.net/Alerts/197302/

Scores

EPSS 0.0039
EPSS Percentile 60.2%

Details

Status published
Products (1)
kde/kdebase 3.5.4_0.4.fc5
Published Sep 06, 2006
Tracked Since Feb 18, 2026