Family: Mandrake Local Security Checks --> Category: infos
MDKSA-2006:105: kdebase Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the kdebase package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory MDKSA-2006:105 (kdebase).
A problem with how kdm manages the ~/.dmrc file was discovered by
Ludwig Nussel. By using a symlink attack, a local user could get kdm
to read arbitrary files on the system, including privileged system
files and those belonging to other users.
The updated packages have been patched to correct these issues.
Solution : http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2006:105
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.