CVE-2001-0178

Name of the Vulnerable Software and Affected Versions: KDE versions prior to 2.2.0-6

Description: The issue concerns the kdesu program in KDE, which fails to properly verify the owner of a UNIX socket used for sending passwords. This allows local users to steal passwords and gain privileges.

Recommendations: For versions prior to 2.2.0-6, update to version 2.2.0-6 or later to resolve the issue.