Lucene search
GoogleOSV:DSA-204HistoryDec 05, 2002 - 12:00 a.m.
kdelibs - arbitrary program execution
2002-12-0500:00:00
Google
osv.dev
13
EPSS
0.092
Percentile
94.7%
The KDE team has
discovered a vulnerability in the support for various
network protocols via the KIO. The implementation of the rlogin and telnet
protocols allows a carefully crafted URL in an HTML page, HTML email or
other KIO-enabled application to execute arbitrary commands on the
system using the victim’s account on the vulnerable machine.
This problem has been fixed by disabling rlogin and telnet in version
2.2.2-13.woody.5 for the current stable distribution (woody). The old
stable distribution (potato) is not affected since it doesn’t contain
KDE. A correction for the package in the unstable distribution (sid)
is not yet available.
We recommend that you upgrade your kdelibs3 package immediately.
Related
openvas
openvas
Debian Security Advisory DSA 204-1 (kdelibs)
2008-01-17 00:00:00
Debian Security Advisory DSA 204-1 (kdelibs)
2008-01-17 00:00:00
nessus
nessus
Debian DSA-204-1 : kdelibs - arbitrary program execution
2004-09-29 00:00:00
Mandrake Linux Security Advisory : kdelibs (MDKSA-2002:079)
2004-07-31 00:00:00
RHEL 2.1 : kdelibs (RHSA-2002:221)
2004-07-06 00:00:00
debian
debian
[SECURITY] [DSA 204-1] New kdlibs packages fix arbitrary program execution
2002-12-05 15:11:10
[SECURITY] [DSA 204-1] New kdlibs packages fix arbitrary program execution
2002-12-05 15:11:10
cve
cve
CVE-2002-1282
2002-11-29 05:00:00
CVE-2002-1281
2002-11-29 05:00:00
cvelist
cvelist
CVE-2002-1282
2002-11-14 05:00:00
CVE-2002-1281
2002-11-14 05:00:00
nvd
nvd
CVE-2002-1282
2002-11-29 05:00:00
CVE-2002-1281
2002-11-29 05:00:00