SUSE CVE-2008-1671

startkdeinit in KDE 3.5.5 through 3.5.9, when installed setuid root, allows local users to cause a denial of service and possibly execute arbitrary code via "user-influenceable input" probably command-line arguments that cause startkdeinit to send SIGUSR1 signals to other processes...

Slackware: Security Advisory (SSA:2008-116-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Mandriva Linux Security Advisory : kdelibs (MDVSA-2008:097)

A vulnerability was found in startkdeinit in KDE 3.5.5 through 3.5.9 where, if it was installed setuid root, it could allow local users to cause a denial of service or possibly execute arbitrary code CVE-2008-1671. By default, startkdeinit is not installed setuid root on Mandriva Linux, however...

Mandriva Update for kdelibs MDVSA-2008:097 (kdelibs)

Check for the Version of kdelibs OpenVAS Vulnerability Test Mandriva Update for kdelibs MDVSA-2008:097 kdelibs Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...

Gentoo Security Advisory GLSA 200804-30 (kdelibs)

The remote host is missing updates announced in advisory GLSA 200804-30. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

Gentoo Security Advisory GLSA 200804-30 (kdelibs)

The remote host is missing updates announced in advisory GLSA 200804-30. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

GLSA-200804-30 : KDE start_kdeinit: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200804-30 KDE startkdeinit: Multiple vulnerabilities Vulnerabilities have been reported in the processing of user-controlled data by startkdeinit, which is setuid root by default. Impact : A local attacker could possibly execute...

[Full-disclosure] [ GLSA 200804-30 ] KDE start_kdeinit: Multiple vulnerabilities

Gentoo Linux Security Advisory GLSA 200804-30 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity:...

KDE start_kdeinit: Multiple vulnerabilities

Background KDE is a feature-rich graphical desktop environment for Linux and Unix-like operating systems. startkdeinit is a wrapper for kdeinit. Description Vulnerabilities have been reported in the processing of user-controlled data by startkdeinit, which is setuid root by default. Impact A loca...

KDE start_kdeinit本地权限提升漏洞

BUGTRAQ ID: 28938 CVECAN ID: CVE-2008-1671 KDE是一个为UNIX工作站设计的强大的开源图形桌面环境。 startkdeinit是KDE使用的用于启动kdeinit的封装程序，默认下startkdeinit是以setuid root安装的，这允许本地用户向其他进程发送Unix信号，导致拒绝服务或执行任意指令。 KDE 3.5.5 - 3.5.9 KDE --- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载：...

Input validation

startkdeinit in KDE 3.5.5 through 3.5.9, when installed setuid root, allows local users to cause a denial of service and possibly execute arbitrary code via "user-influenceable input" probably command-line arguments that cause startkdeinit to send SIGUSR1 signals to other processes...

CVE-2008-1671

startkdeinit in KDE 3.5.5 through 3.5.9, when installed setuid root, allows local users to cause a denial of service and possibly execute arbitrary code via "user-influenceable input" probably command-line arguments that cause startkdeinit to send SIGUSR1 signals to other processes...

CVE-2008-1671

startkdeinit in KDE 3.5.5 through 3.5.9, when installed setuid root, allows local users to cause a denial of service and possibly execute arbitrary code via "user-influenceable input" probably command-line arguments that cause startkdeinit to send SIGUSR1 signals to other processes...

CVE-2008-1671

startkdeinit in KDE 3.5.5 through 3.5.9, when installed setuid root, allows local users to cause a denial of service and possibly execute arbitrary code via "user-influenceable input" probably command-line arguments that cause startkdeinit to send SIGUSR1 signals to other processes...

CVE-2008-1671

CVE-2008-1671 affects KDE’s start_kdeinit in KDE 3.5.5–3.5.9 when installed setuid root. A local user can trigger denial of service and, per advisories, potentially execute arbitrary code by supplying input that causes start_kdeinit to send SIGUSR1 to other processes. Connected advisories (Mandri...