CVE-2004-2658
Description
A vulnerability in resmgr on SUSE CORE 9 allows local users to spoof terminal names and login types due to improper terminal identification.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
A vulnerability in resmgr on SUSE CORE 9 allows local users to spoof terminal names and login types due to improper terminal identification.
Vulnerability
resmgr on SUSE CORE 9 contains a flaw in how it identifies terminal names. This allows local users to fake terminal names and consequently login types. The issue affects SUSE CORE 9 for x86, Itanium, POWER, S/390, zSeries, AMD64, and SuSE Linux Desktop 1.0 [1].
Exploitation
An attacker with local access to the system can spoof terminal names within the resmgr context. The exact exploitation steps are not detailed in the available reference, but it involves manipulating terminal identifiers to misrepresent login types [1].
Impact
Successful exploitation allows an attacker to misrepresent terminals and login types, potentially leading to authentication bypass or privilege escalation. The advisory describes this as a minor issue [1].
Mitigation
SUSE released a security update on 22 October 2004. Users should update the resmgr package using the RPM command provided in the advisory. Patches are available for all affected architectures [1].
AI Insight generated on May 24, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1News mentions
0No linked articles in our index yet.