backend/session.c in KDM in KDE 3.3.0 through 3.5.7, when autologin is configured and "shutdown with password" is enabled, allows remote attackers to bypass the password requirement and login to arbitrary accounts via unspecified vectors.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2007-09-21T18:00:00

Updated: 2024-08-07T15:01:09.954Z

Reserved: 2007-08-28T00:00:00

Link: CVE-2007-4569

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2007-09-21T19:17:00.000

Modified: 2024-11-21T00:35:55.010

Link: CVE-2007-4569

cve-icon Redhat

Severity : Moderate

Publid Date: 2007-09-19T00:00:00Z

Links: CVE-2007-4569 - Bugzilla