Mandriva Update For Kdebase MDKSA-2007:190 (kdebase) Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

A vulnerability was discovered in KDM by Kees Huijgen where under certain circumstances and in particular configurations, KDM could be tricked into allowing users to login without a password. Updated packages have been patched to prevent this issue.

Affected

kdebase on Mandriva Linux 2007.0, Mandriva Linux 2007.0/X86_64, Mandriva Linux 2007.1, Mandriva Linux 2007.1/X86_64

Severity

Classification

CVE CVE-2007-4569

CVSS	Base Score: 6.8 AV:L/AC:L/Au:S/C:C/I:C/A:C

Related Vulnerabilities

Mandrake Security Advisory MDVSA-2009:032 (kernel)
Mandrake Security Advisory MDVSA-2009:048-2 (epiphany)
Mandrake Security Advisory MDVSA-2009:017 (kdebase)
Mandrake Security Advisory MDVSA-2009:188 (php4-eaccelerator)
Mandrake Security Advisory MDVSA-2009:207 (perl-Compress-Raw-Bzip2)

Mandriva Update for kdebase MDKSA-2007:190 (kdebase)

Take action and discover your vulnerabilities