← CVECheck
HomeVulnerabilities

CVE-2003-0690 — HIGH severity vulnerability (KDM in KDE 3.1.3 and earlier does not verify whether the pam)

KDM in KDE 3.1.3 and earlier does not verify whether the pam_setcred function call succeeds, which may allow attackers to gain root privileges by triggering error conditions within PAM modules, as demonstrated in certain configurations of the MIT pam_krb5 module.

CVE IDCVE-2003-0690
SeverityHIGH
CVSS score10.0
CVSS vectorAV:N/AC:L/Au:N/C:C/I:C/A:C
CWENVD-CWE-Other
StatusModified
Published2003-10-06
Last modified2026-04-16
DescriptionKDM in KDE 3.1.3 and earlier does not verify whether the pam_setcred function call succeeds, which may allow attackers to gain root privileges by triggering error conditions within PAM modules, as demonstrated in certain configurations of the MIT pam_krb5 module.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →