Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kde kde 3.0.5 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2002-1393
Multiple vulnerabilities in KDE 2 and KDE 3.x up to and including 3.0.5 do not quote certain parameters that are inserted into a shell command, which could allow remote malicious users to execute arbitrary commands via (1) URLs, (2) filenames, or (3) e-mail addresses.
Kde Kde 2.2.1
Kde Kde 2.1.2
Kde Kde 2.0
Kde Kde 3.0.2
Kde Kde 3.0.5
Kde Kde 2.2
Kde Kde 2.0.1
Kde Kde 2.1
Kde Kde 3.0.1
Kde Kde 3.0.4
Kde Kde 3.0
Kde Kde 2.1.1
Kde Kde 2.2.2
Kde Kde 3.0.3
Kde Kde 3.0.3a
NA
CVE-2003-0204
KDE 2 and KDE 3.1.1 and previous versions 3.x versions allows malicious users to execute arbitrary commands via (1) PostScript (PS) or (2) PDF files, related to missing -dPARANOIDSAFER and -dSAFER arguments when using the kghostview Ghostscript viewer.
Kde Kde 2.2.1
Kde Kde 2.1.2
Kde Kde 2.0
Kde Kde 3.0.2
Kde Kde 3.0.5
Kde Kde 2.2
Kde Kde 2.0.1
Kde Kde 2.1
Kde Kde 3.0.1
Kde Kde 3.0.5a
Kde Kde 3.0.4
Kde Kde 3.0
Kde Kde 2.1.1
Kde Kde 2.2.2
Kde Kde 3.1
Kde Kde 3.0.3
Kde Kde 3.1.1
Kde Kde 3.0.3a
NA
CVE-2003-0592
Konqueror in KDE 3.1.3 and previous versions (kdelibs) allows remote malicious users to bypass intended cookie access restrictions on a web application via "%2e%2e" (encoded dot dot) directory traversal sequences in a URL, which causes Konqueror to send the cookie outsi...
Kde Konqueror 3.1.2
Kde Konqueror 3.0.2
Kde Konqueror 2.2.2
Kde Konqueror 3.1
Kde Konqueror 3.0
Kde Konqueror 3.0.1
Kde Konqueror 3.0.3
Kde Konqueror 3.1.1
Kde Konqueror Embedded 0.1
Kde Konqueror 2.1.1
Kde Konqueror 3.0.5
NA
CVE-2004-0527
KDE Konqueror 2.1.1 and 2.2.2 allows remote malicious users to spoof a legitimate URL in the status bar via A HREF tags with modified "alt" values that point to the legitimate site, combined with an image map whose href points to the malicious site, which facilitates a ...
Kde Konqueror 3.1.2
Kde Konqueror 3.0.2
Kde Konqueror 2.2.2
Kde Konqueror 3.1
Kde Konqueror 3.0
Kde Konqueror 3.0.1
Kde Konqueror 3.0.3
Kde Konqueror 3.1.1
Kde Konqueror 3.1.3
Kde Konqueror 3.2.1
Kde Konqueror 2.1.1
Kde Konqueror 3.0.5
1 EDB exploit
NA
CVE-2003-0690
KDM in KDE 3.1.3 and previous versions does not verify whether the pam_setcred function call succeeds, which may allow malicious users to gain root privileges by triggering error conditions within PAM modules, as demonstrated in certain configurations of the MIT pam_krb5 module.
Kde Kde 2.2.1
Kde Kde 2.1.2
Kde Kde 2.0
Kde Kde 3.0.2
Kde Kde 3.0.5
Kde Kde 2.0 Beta
Kde Kde 2.2
Kde Kde 3.1.1a
Kde Kde 2.0.1
Kde Kde 3.0.5b
Kde Kde 3.1.2
Kde Kde 2.1
Kde Kde 3.0.1
Kde Kde 3.0.5a
Kde Kde 3.0.4
Kde Kde 3.0
Kde Kde 2.1.1
Kde Kde 1.1.2
Kde Kde 1.1.1
Kde Kde 3.1.3
Kde Kde 2.2.2
Kde Kde 3.1
NA
CVE-2003-0692
KDM in KDE 3.1.3 and previous versions uses a weak session cookie generation algorithm that does not provide 128 bits of entropy, which allows malicious users to guess session cookies via brute force methods and gain access to the user session.
Kde Kde 2.2.1
Kde Kde 2.1.2
Kde Kde 2.0
Kde Kde 3.0.2
Kde Kde 3.0.5
Kde Kde 2.0 Beta
Kde Kde 2.2
Kde Kde 3.1.1a
Kde Kde 2.0.1
Kde Kde 3.0.5b
Kde Kde 3.1.2
Kde Kde 2.1
Kde Kde 3.0.1
Kde Kde 3.0.5a
Kde Kde 3.0.4
Kde Kde 3.0
Kde Kde 2.1.1
Kde Kde 1.1.2
Kde Kde 1.1.1
Kde Kde 3.1.3
Kde Kde 2.2.2
Kde Kde 3.1
NA
CVE-2005-2101
langen2kvtml in KDE 3.0 to 3.4.2 creates insecure temporary files in /tmp with predictable names, which allows local users to overwrite arbitrary files.
Kde Kde 3.3.2
Kde Kde 3.0.2
Kde Kde 3.0.5
Kde Kde 3.2.0 Beta1
Kde Kde 3.3.1
Kde Kde 3.2.2
Kde Kde 3.2.1
Kde Kde 3.1.5
Kde Kde 3.1.2
Kde Kde 3.0.1
Kde Kde 3.0.5a
Kde Kde 3.0.4
Kde Kde 3.0
Kde Kde 3.4
Kde Kde 3.1 Beta2
Kde Kde 3.1.3
Kde Kde 3.1
Kde Kde 3.1 Alpha1
Kde Kde 3.1.4
Kde Kde 3.3
Kde Kde 3.0.3
Kde Kde 3.2
NA
CVE-2004-0870
KDE Konqueror does not prevent cookies that are sent over an insecure channel (HTTP) from also being sent over a secure channel (HTTPS/SSL) in the same domain, which could allow remote malicious users to steal cookies and conduct unauthorized activities, aka "Cross Security ...
Kde Konqueror 3.1.2
Kde Konqueror 3.0.2
Kde Konqueror 2.2.2
Kde Konqueror 3.1
Kde Konqueror 3.0
Kde Konqueror 3.0.1
Kde Konqueror 3.0.3
Kde Konqueror 3.1.1
Kde Konqueror 2.1.2
Kde Konqueror 3.2.3
Kde Konqueror 3.0.5b
Kde Konqueror 2.2.1
Kde Konqueror 3.1.3
Kde Konqueror 3.1.4
Kde Konqueror 3.2.1
Kde Konqueror 3.1.5
Kde Konqueror 2.1.1
Kde Konqueror 3.0.5
NA
CVE-2006-3672
KDE Konqueror 3.5.1 and previous versions allows remote malicious users to cause a denial of service (application crash) by calling the replaceChild method on a DOM object, which triggers a null dereference, as demonstrated by calling document.replaceChild with a 0 (zero) argumen...
Kde Konqueror 3.2.2.6
Kde Konqueror 3.1.2
Kde Konqueror 3.0.2
Kde Konqueror 3.3
Kde Konqueror 2.2.2
Kde Konqueror 3.1
Kde Konqueror 3.0
Kde Konqueror 3.3.1
Kde Konqueror 3.0.1
Kde Konqueror 3.0.3
Kde Konqueror 3.1.1
Kde Konqueror 2.1.2
Kde Konqueror
Kde Konqueror 3.2.3
Kde Konqueror 3.0.5b
Kde Konqueror 2.2.1
Kde Konqueror 3.1.3
Kde Konqueror 3.3.2
Kde Konqueror 3.1.4
Kde Konqueror 3.2.1
Kde Konqueror 3.1.5
Kde Konqueror 3.2.2
1 EDB exploit
NA
CVE-2005-4684
Konqueror can associate a cookie with multiple domains when the DNS resolver has a non-root domain in its search list, which allows remote malicious users to trick a user into accepting a cookie for a hostname formed via search-list expansion of the hostname entered by the user, ...
Kde Konqueror 3.2.2.6
Kde Konqueror 3.1.2
Kde Konqueror 3.0.2
Kde Konqueror 3.3
Kde Konqueror 2.2.2
Kde Konqueror 3.1
Kde Konqueror 3.0
Kde Konqueror 3.3.1
Kde Konqueror 3.0.1
Kde Konqueror 3.0.3
Kde Konqueror 3.1.1
Kde Konqueror 2.1.2
Kde Konqueror 3.2.3
Kde Konqueror 3.0.5b
Kde Konqueror 2.2.1
Kde Konqueror 3.1.3
Kde Konqueror 0.1
Kde Konqueror 3.3.2
Kde Konqueror 3.1.4
Kde Konqueror 3.2.1
Kde Konqueror 3.1.5
Kde Konqueror 2.1.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »