Filtered by vendor Kde
Subscriptions
Total
193 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2006-6297 | 1 Kde | 1 Kdegraphics | 2011-08-04 | N/A |
Stack consumption vulnerability in the KFILE JPEG (kfile_jpeg) plugin in kdegraphics 3, as used by konqueror, digikam, and other KDE image browsers, allows remote attackers to cause a denial of service (stack consumption) via a crafted EXIF section in a JPEG file, which results in an infinite recursion. | ||||
CVE-2006-6660 | 1 Kde | 1 Libkhtml | 2011-03-08 | N/A |
The nodeType function in KDE libkhtml 4.2.0 and earlier, as used by Konquerer, KMail, and other programs, allows remote attackers to cause a denial of service (crash) via malformed HTML tags, possibly involving a COL SPAN tag embedded in a RANGE tag. | ||||
CVE-2003-0370 | 4 Apple, Kde, Redhat and 1 more | 6 Safari, Kde, Konqueror Embedded and 3 more | 2008-09-10 | N/A |
Konqueror Embedded and KDE 2.2.2 and earlier does not validate the Common Name (CN) field for X.509 Certificates, which could allow remote attackers to spoof certificates via a man-in-the-middle attack. | ||||
CVE-2003-0256 | 1 Kde | 1 Kopete | 2008-09-10 | N/A |
The GnuPG plugin in kopete before 0.6.2 does not properly cleanse the command line when executing gpg, which allows remote attackers to execute arbitrary commands. | ||||
CVE-2000-0460 | 1 Kde | 1 Kde | 2008-09-10 | N/A |
Buffer overflow in KDE kdesud on Linux allows local uses to gain privileges via a long DISPLAY environmental variable. | ||||
CVE-2000-0393 | 1 Kde | 1 Kde | 2008-09-10 | N/A |
The KDE kscd program does not drop privileges when executing a program specified in a user's SHELL environmental variable, which allows the user to gain privileges by specifying an alternate program to execute. | ||||
CVE-2000-0371 | 1 Kde | 1 Kde | 2008-09-10 | N/A |
The libmediatool library used for the KDE mediatool allows local users to create arbitrary files via a symlink attack. | ||||
CVE-1999-0735 | 1 Kde | 1 K-mail | 2008-09-09 | N/A |
KDE K-Mail allows local users to gain privileges via a symlink attack in temporary user directories. | ||||
CVE-2005-2101 | 1 Kde | 1 Kde | 2008-09-05 | N/A |
langen2kvtml in KDE 3.0 to 3.4.2 creates insecure temporary files in /tmp with predictable names, which allows local users to overwrite arbitrary files. | ||||
CVE-2005-0011 | 1 Kde | 1 Kde | 2008-09-05 | N/A |
Multiple vulnerabilities in fliccd, when installed setuid root as part of the kdeedu Kstars support for Instrument Neutral Distributed Interface (INDI) in KDE 3.3 to 3.3.2, allow local users and remote attackers to execute arbitrary code via stack-based buffer overflows. | ||||
CVE-2002-1224 | 1 Kde | 1 Kde | 2008-09-05 | N/A |
Directory traversal vulnerability in kpf for KDE 3.0.1 through KDE 3.0.3a allows remote attackers to read arbitrary files as the kpf user via a URL with a modified icon parameter. | ||||
CVE-2002-1223 | 1 Kde | 1 Kde | 2008-09-05 | N/A |
Buffer overflow in DSC 3.0 parser from GSview, as used in KGhostView in KDE 1.1 and KDE 3.0.3a, may allow attackers to cause a denial of service or execute arbitrary code via a modified .ps (PostScript) input file. | ||||
CVE-2000-0918 | 1 Kde | 1 Kvt | 2008-09-05 | N/A |
Format string vulnerability in kvt in KDE 1.1.2 may allow local users to execute arbitrary commands via a DISPLAY environmental variable that contains formatting characters. |