KDE Display Manager (KDM) in KDE 3.2.0 up to 3.5.3 allows local users to read arbitrary files via a symlink attack related to the session type for login.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Kde | Kde | 3.2 (including) | 3.2 (including) |
| Kde | Kde | 3.2.1 (including) | 3.2.1 (including) |
| Kde | Kde | 3.2.2 (including) | 3.2.2 (including) |
| Kde | Kde | 3.2.3 (including) | 3.2.3 (including) |
| Kde | Kde | 3.3 (including) | 3.3 (including) |
| Kde | Kde | 3.3.1 (including) | 3.3.1 (including) |
| Kde | Kde | 3.3.2 (including) | 3.3.2 (including) |
| Kde | Kde | 3.4 (including) | 3.4 (including) |
| Kde | Kde | 3.4.1 (including) | 3.4.1 (including) |
| Kde | Kde | 3.4.2 (including) | 3.4.2 (including) |
| Kde | Kde | 3.4.3 (including) | 3.4.3 (including) |
| Kde | Kde | 3.5 (including) | 3.5 (including) |
| Kde | Kde | 3.5.2 (including) | 3.5.2 (including) |
| Kde | Kde | 3.5.3 (including) | 3.5.3 (including) |
| Red Hat Enterprise Linux 4 | RedHat | kdebase-6:3.3.1-5.12 | * |
| Kdebase | Ubuntu | dapper | * |
| Kdebase | Ubuntu | devel | * |
| Kdebase | Ubuntu | edgy | * |
| Kdebase | Ubuntu | feisty | * |