27 matches found
EUVD-2010-1033
Malware in sbrugna...
EUVD-2011-1178
Malware in sbrugna...
EUVD-2011-1586
Malware in sbrugna...
FreeBSD Ports: kdelibs
The remote host is missing an update to the system as announced in the referenced advisory. VID 6d21a287-fce0-11e0-a828-00235a5f2c9a OpenVAS Vulnerability Test $ Description: Auto generated from VID 6d21a287-fce0-11e0-a828-00235a5f2c9a Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...
CVE-2011-3365
The KDE SSL Wrapper KSSL API in KDE SC 4.6.0 through 4.7.1, and possibly earlier versions, does not use a certain font when rendering certificate fields in a security dialog, which allows remote attackers to spoof the common name CN of a certificate via rich text...
Mandriva Update for kdenetwork4 MDVSA-2011:081 (kdenetwork4)
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Mandriva Linux Security Advisory : kdenetwork4 (MDVSA-2011:081)
A vulnerability has been found and corrected in kdenetwork4 : Directory traversal vulnerability in the KGetMetalink::File::isValidNameAttr function in ui/metalinkcreator/metalinker.cpp in KGet in KDE SC 4.6.2 and earlier allows remote attackers to create arbitrary files via a .. dot dot in the na...
CVE-2011-1586
CVE-2011-1586 details (from provided docs): A directory traversal vulnerability in KDE’s KGet component (KGetMetalink::File::isValidNameAttr in ui/metalinkcreator/metalinker.cpp) affects KDE SC 4.6.2 and earlier. The issue allows remote attackers to create arbitrary files by using a .. (dot dot) ...
CVE-2011-1586
Directory traversal vulnerability in the KGetMetalink::File::isValidNameAttr function in ui/metalinkcreator/metalinker.cpp in KGet in KDE SC 4.6.2 and earlier allows remote attackers to create arbitrary files via a .. dot dot in the name attribute of a file element in a metalink file. NOTE: this...
Mandriva Linux Security Advisory : kdelibs4 (MDVSA-2011:075)
A vulnerability has been found and corrected in kdelibs4 : Cross-site scripting XSS vulnerability in the KHTMLPart::htmlError function in khtml/khtmlpart.cpp in Konqueror in KDE SC 4.4.0 through 4.6.1 allows remote attackers to inject arbitrary web script or HTML via the URI in a URL correspondin...
CVE-2011-1168
Cross-site scripting XSS vulnerability in the KHTMLPart::htmlError function in khtml/khtmlpart.cpp in Konqueror in KDE SC 4.4.0 through 4.6.1 allows remote attackers to inject arbitrary web script or HTML via the URI in a URL corresponding to an unavailable web site...
CVE-2011-1168
Removed by vendor...
CVE-2011-1168
Cross-site scripting XSS vulnerability in the KHTMLPart::htmlError function in khtml/khtmlpart.cpp in Konqueror in KDE SC 4.4.0 through 4.6.1 allows remote attackers to inject arbitrary web script or HTML via the URI in a URL corresponding to an unavailable web site...
CVE-2011-1168
CVE-2011-1168 describes an XSS vulnerability in Konqueror’s KDE SC 4.4.0–4.6.1 due to the KHTMLPart::htmlError handling. The flaw allows a remote attacker to inject arbitrary script/HTML by crafting the URI of an unavailable web site, via the error page rendering path in KHTML/KDelibs. Several co...
CVE-2011-1586
Directory traversal vulnerability in the KGetMetalink::File::isValidNameAttr function in ui/metalinkcreator/metalinker.cpp in KGet in KDE SC 4.6.2 and earlier allows remote attackers to create arbitrary files via a .. dot dot in the name attribute of a file element in a metalink file. NOTE: this...
CVE-2011-1168
Cross-site scripting XSS vulnerability in the KHTMLPart::htmlError function in khtml/khtmlpart.cpp in Konqueror in KDE SC 4.4.0 through 4.6.1 allows remote attackers to inject arbitrary web script or HTML via the URI in a URL corresponding to an unavailable web site...
Fedora 11 : PyQt4-4.7.2-2.fc11 / kdeaccessibility-4.4.2-1.fc11 / kdeadmin-4.4.2-1.fc11 / etc (2010-6077)
This update set updates the KDE Software Compilation KDE SC to KDE SC 4.4.2, which has a number of improvements: Possible crashes in Plasma, Dolphin and Okular have been fixed The Microblog applet now shows the correct time in the timeline The audioplayer KRunner plugin has been fixed to not free...
Mandriva Linux Security Advisory : kdenetwork4 (MDVSA-2010:098)
Multiple vulnerabilities has been discovered and fixed in kget kdenetwork4 : Directory traversal vulnerability in KGet in KDE SC 4.0.0 through 4.4.3 allows remote attackers to create arbitrary files via directory traversal sequences in the name attribute of a file element in a metalink file...
CVE-2010-1511
KGet 2.4.2 in KDE SC 4.0.0 through 4.4.3 does not properly request download confirmation from the user, which makes it easier for remote attackers to overwrite arbitrary files via a crafted metalink file...
CVE-2010-1000
Directory traversal vulnerability in KGet in KDE SC 4.0.0 through 4.4.3 allows remote attackers to create arbitrary files via directory traversal sequences in the name attribute of a file element in a metalink file...