CVE-2006-2449
Description
KDM in KDE 3.2.0 through 3.5.3 allows local users to read arbitrary files via a symlink attack on the session type during login.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
KDM in KDE 3.2.0 through 3.5.3 allows local users to read arbitrary files via a symlink attack on the session type during login.
Vulnerability
KDE Display Manager (KDM) versions 3.2.0 through 3.5.3 are vulnerable to a symlink attack. The vulnerability exists in the handling of the session type during the login process, where KDM may follow symbolic links created by an attacker, leading to reading of arbitrary files.
Exploitation
A local attacker with the ability to create symbolic links on the system can exploit this vulnerability. By placing a symlink pointing to a sensitive file (e.g., /etc/shadow) in the location where KDM expects the session type file, the attacker can cause KDM to read the contents of the target file during the login process.
Impact
Successful exploitation allows a local attacker to read arbitrary files on the system, potentially including sensitive configuration files, password hashes, or other confidential data. This can lead to privilege escalation or information disclosure.
Mitigation
The vulnerability was addressed in later KDE releases. Users should upgrade to KDE 3.5.4 or later. If upgrading is not possible, restrict local access to trusted users only. The issue is also referenced in Secunia advisories [1][2][3][4].
AI Insight generated on May 24, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
15cpe:2.3:o:kde:kde:3.2:*:*:*:*:*:*:*+ 13 more
- cpe:2.3:o:kde:kde:3.2:*:*:*:*:*:*:*
- cpe:2.3:o:kde:kde:3.2.1:*:*:*:*:*:*:*
- cpe:2.3:o:kde:kde:3.2.2:*:*:*:*:*:*:*
- cpe:2.3:o:kde:kde:3.2.3:*:*:*:*:*:*:*
- cpe:2.3:o:kde:kde:3.3:*:*:*:*:*:*:*
- cpe:2.3:o:kde:kde:3.3.1:*:*:*:*:*:*:*
- cpe:2.3:o:kde:kde:3.3.2:*:*:*:*:*:*:*
- cpe:2.3:o:kde:kde:3.4:*:*:*:*:*:*:*
- cpe:2.3:o:kde:kde:3.4.1:*:*:*:*:*:*:*
- cpe:2.3:o:kde:kde:3.4.2:*:*:*:*:*:*:*
- cpe:2.3:o:kde:kde:3.4.3:*:*:*:*:*:*:*
- cpe:2.3:o:kde:kde:3.5:*:*:*:*:*:*:*
- cpe:2.3:o:kde:kde:3.5.2:*:*:*:*:*:*:*
- cpe:2.3:o:kde:kde:3.5.3:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
25- www.redhat.com/support/errata/RHSA-2006-0548.htmlnvdPatchVendor Advisory
- secunia.com/advisories/20602nvdVendor Advisory
- secunia.com/advisories/20660nvdVendor Advisory
- secunia.com/advisories/20674nvdVendor Advisory
- secunia.com/advisories/20702nvdVendor Advisory
- secunia.com/advisories/20785nvdVendor Advisory
- secunia.com/advisories/20869nvdVendor Advisory
- secunia.com/advisories/20890nvdVendor Advisory
- secunia.com/advisories/21662nvdVendor Advisory
- www.debian.org/security/2006/dsa-1156nvdVendor Advisory
- www.kde.org/info/security/advisory-20060614-1.txtnvdVendor Advisory
- www.novell.com/linux/security/advisories/2006_39_kdm.htmlnvdVendor Advisory
- securitytracker.com/idnvd
- slackware.com/security/viewer.phpnvd
- www.gentoo.org/security/en/glsa/glsa-200606-23.xmlnvd
- www.mandriva.com/security/advisoriesnvd
- www.mandriva.com/security/advisoriesnvd
- www.osvdb.org/26511nvd
- www.securityfocus.com/archive/1/437133/100/0/threadednvd
- www.securityfocus.com/archive/1/437322/100/0/threadednvd
- www.securityfocus.com/bid/18431nvd
- www.vupen.com/english/advisories/2006/2355nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/27181nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9844nvd
- usn.ubuntu.com/301-1/nvd
News mentions
0No linked articles in our index yet.