CVE-2001-0178 | SynScan

Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2001-0178

kdesu program in KDE2 (KDE before 2.2.0-6) does not properly verify the owner of a UNIX socket that is used to send a password, which allows local users to steal passwords and gain privileges.

Published: Mar 26, 2001
Updated: Apr 13, 2023
CVE: CVE-2001-0178
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 2.1
AV:L/AC:L/Au:N/C:P/I:N/A:N

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
conectiva / linux	6.0	6.0.x
suse / suse_linux	6.2	6.2.x
mandrakesoft / mandrake_linux	7.2	7.2.x
mandrakesoft / mandrake_linux	7.0	7.0.x
mandrakesoft / mandrake_linux_corporate_server	1.0.1	1.0.1.x
mandrakesoft / mandrake_linux	7.1	7.1.x
suse / suse_linux	6.0	6.0.x
suse / suse_linux	6.1	6.1.x
suse / suse_linux	7.0	7.0.x
caldera / openlinux_edesktop	2.4	2.4.x
suse / suse_linux	6.3	6.3.x
suse / suse_linux	6.4	6.4.x
mandrakesoft / mandrake_linux	6.1	6.1.x