Privilege Escalation via Insecure UNIX Socket Verification in kdesu program

Privilege Escalation via Insecure UNIX Socket Verification in kdesu program

CVE-2001-0178 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

kdesu program in KDE2 (KDE before 2.2.0-6) does not properly verify the owner of a UNIX socket that is used to send a password, which allows local users to steal passwords and gain privileges.

Learn more about our User Device Pen Test.