CVE-2006-2452 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2006-2452 Interim 1 4 2023-12-09T02:18:37Z current 2021-05-30T12:35:43Z 2023-12-09T02:18:37Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2006-2452 GNOME GDM 2.8, 2.12, 2.14, and 2.15, when the "face browser" feature is enabled, allows local users to access the "Configure Login Manager" functionality using their own password instead of the root password, which can be leveraged to gain additional privileges. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/F7WAE476UJRYKZ7RDKQW566ALC3TA4DY/#F7WAE476UJRYKZ7RDKQW566ALC3TA4DY E-Mail link for SUSE-SR:2006:013 https://www.suse.com/support/security/rating/ SUSE Security Ratings GNOME GDM 2.8, 2.12, 2.14, and 2.15, when the "face browser" feature is enabled, allows local users to access the "Configure Login Manager" functionality using their own password instead of the root password, which can be leveraged to gain additional privileges. CVE-2006-2452 moderate 3.7 AV:L/AC:H/Au:N/C:P/I:P/A:P