KDE 3.2.1

CPE Details

KDE 3.2.1
kde
kde
3.2.1
2023-12-27
15h02 +00:00
2023-12-27
15h02 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:o:kde:kde:3.2.1:*:*:*:*:*:*:*

Informations

Vendor

kde

Product

kde

Version

3.2.1

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2012-4514 2012-11-11 11h00 +00:00 rendering/render_replaced.cpp in Konqueror in KDE before 4.9.3 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted web page, related to "trying to reuse a frame with a null part."
5
CVE-2007-5963 2007-12-19 22h00 +00:00 Unspecified vulnerability in kdebase allows local users to cause a denial of service (KDM login inaccessible, or resource consumption) via unknown vectors.
4.7
CVE-2007-0104 2007-01-08 23h00 +00:00 The Adobe PDF specification 1.3, as implemented by (a) xpdf 3.0.1 patch 2, (b) kpdf in KDE before 3.5.5, (c) poppler before 0.5.4, and other products, allows remote attackers to have an unknown impact, possibly including denial of service (infinite loop), arbitrary code execution, or memory corruption, via a PDF file with a (1) crafted catalog dictionary or (2) a crafted Pages attribute that references an invalid page tree node.
6.8
CVE-2006-2449 2006-06-15 08h00 +00:00 KDE Display Manager (KDM) in KDE 3.2.0 up to 3.5.3 allows local users to read arbitrary files via a symlink attack related to the session type for login.
4
CVE-2006-0019 2006-01-20 20h00 +00:00 Heap-based buffer overflow in the encodeURI and decodeURI functions in the kjs JavaScript interpreter engine in KDE 3.2.0 through 3.5.0 allows remote attackers to execute arbitrary code via a crafted, UTF-8 encoded URI.
7.5
CVE-2005-2494 2005-09-06 02h00 +00:00 kcheckpass in KDE 3.2.0 up to 3.4.2 allows local users to gain root access via a symlink attack on lock files.
7.2
CVE-2005-2101 2005-08-17 02h00 +00:00 langen2kvtml in KDE 3.0 to 3.4.2 creates insecure temporary files in /tmp with predictable names, which allows local users to overwrite arbitrary files.
5
CVE-2005-1920 2005-07-26 02h00 +00:00 The (1) Kate and (2) Kwrite applications in KDE KDE 3.2.x through 3.4.0 do not properly set the same permissions on the backup file as were set on the original file, which could allow local users and possibly remote attackers to obtain sensitive information.
7.5
High
CVE-2005-0754 2005-04-24 02h00 +00:00 Kommander in KDE 3.2 through KDE 3.4.0 executes data files without confirmation from the user, which allows remote attackers to execute arbitrary code.
7.5
CVE-2005-0206 2005-02-15 04h00 +00:00 The patch for integer overflow vulnerabilities in Xpdf 2.0 and 3.0 (CVE-2004-0888) is incomplete for 64-bit architectures on certain Linux distributions such as Red Hat, which could leave Xpdf users exposed to the original vulnerabilities.
7.5
CVE-2005-0237 2005-02-07 04h00 +00:00 The International Domain Name (IDN) support in Konqueror 3.2.1 on KDE 3.2.1 allows remote attackers to spoof domain names using punycode encoded domain names that are decoded in URLs and SSL certificates in a way that uses homograph characters from other character sets, which facilitates phishing attacks.
5
CVE-2004-1171 2004-12-10 04h00 +00:00 KDE 3.2.x and 3.3.0 through 3.3.2, when saving credentials that are (1) manually entered by the user or (2) created by the SMB protocol handler, stores those credentials for plaintext in the user's .desktop file, which may be created with world-readable permissions, which could allow local users to obtain usernames and passwords for remote resources such as SMB shares.
2.1
CVE-2004-0803 2004-10-26 02h00 +00:00 Multiple vulnerabilities in the RLE (run length encoding) decoders for libtiff 3.6.1 and earlier, related to buffer overflows and integer overflows, allow remote attackers to execute arbitrary code via TIFF files.
7.5
CVE-2004-0886 2004-10-26 02h00 +00:00 Multiple integer overflows in libtiff 3.6.1 and earlier allow remote attackers to cause a denial of service (crash or memory corruption) via TIFF images that lead to incorrect malloc calls.
5
CVE-2004-0888 2004-10-26 02h00 +00:00 Multiple integer overflows in xpdf 2.0 and 3.0, and other packages that use xpdf code such as CUPS, gpdf, and kdegraphics, allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, a different set of vulnerabilities than those identified by CVE-2004-0889.
10
CVE-2004-0889 2004-10-26 02h00 +00:00 Multiple integer overflows in xpdf 3.0, and other packages that use xpdf code such as CUPS, allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, a different set of vulnerabilities than those identified by CVE-2004-0888.
10
CVE-2004-0690 2004-09-14 02h00 +00:00 The DCOPServer in KDE 3.2.3 and earlier allows local users to gain unauthorized access via a symlink attack on DCOP files in the /tmp directory.
4.6
CVE-2004-0689 2004-08-19 02h00 +00:00 KDE before 3.3.0 does not properly handle when certain symbolic links point to "stale" locations, which could allow local users to create or truncate arbitrary files.
7.1
High
CVE-1999-1106 2001-09-12 02h00 +00:00 Buffer overflow in kppp in KDE allows local users to gain root access via a long -c (account_name) command line argument.
7.2
CVE-1999-1267 2001-09-12 02h00 +00:00 KDE file manager (kfm) uses a TCP server for certain file operations, which allows remote attackers to modify arbitrary files by sending a copy command to the server.
5
CVE-1999-1268 2001-09-12 02h00 +00:00 Vulnerability in KDE konsole allows local users to hijack or observe sessions of other users by accessing certain devices.
7.2