Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kde kde 3.5.5 vulnerabilities and exploits
(subscribe to this query)
4.6
CVSSv2
CVE-2008-1671
start_kdeinit in KDE 3.5.5 up to and including 3.5.9, when installed setuid root, allows local users to cause a denial of service and possibly execute arbitrary code via "user-influenceable input" (probably command-line arguments) that cause start_kdeinit to send SIGUSR...
Kde Kde 3.5.7
Kde Kde 3.5.8
Kde Kde 3.5.5
Kde Kde 3.5.6
Kde Kde 3.5.9
4.3
CVSSv2
CVE-2007-6591
KDE Konqueror 3.5.5 and 3.95.00, when a user accepts an SSL server certificate on the basis of the CN domain name in the DN field, regards the certificate as also accepted for all domain names in subjectAltName:dNSName fields, even though these fields cannot be examined in the pr...
Kde Konqueror 3.5.5
Kde Konqueror 3.95.00
6.8
CVSSv2
CVE-2007-4569
backend/session.c in KDM in KDE 3.3.0 up to and including 3.5.7, when autologin is configured and "shutdown with password" is enabled, allows remote malicious users to bypass the password requirement and login to arbitrary accounts via unspecified vectors.
Kde Kde 3.4.0
Kde Kde 3.4.1
Kde Kde 3.5.3
Kde Kde 3.5.4
Kde Kde 3.3.1
Kde Kde 3.3.2
Kde Kde 3.4
Kde Kde 3.5.1
Kde Kde 3.5.2
Kde Kde 3.4.2
Kde Kde 3.4.3
Kde Kde 3.5.5
Kde Kde 3.5.6
Kde Kde 3.3
Kde Kde 3.3.0
Kde Kde 3.5
Kde Kde 3.5.0
Kde Kde 3.5.7
4.3
CVSSv2
CVE-2007-1308
ecma/kjs_html.cpp in KDE JavaScript (KJS), as used in Konqueror in KDE 3.5.5, allows remote malicious users to cause a denial of service (crash) by accessing the content of an iframe with an ftp:// URI in the src attribute, probably due to a NULL pointer dereference.
Kde Konqueror 3.5.5
1 EDB exploit
6.8
CVSSv2
CVE-2007-1564
The FTP protocol implementation in Konqueror 3.5.5 allows remote servers to force the client to connect to other servers, perform a proxied port scan, or obtain sensitive information by specifying an alternate server address in an FTP PASV response.
Kde Konqueror 3.5.5
1 EDB exploit
7.8
CVSSv2
CVE-2007-1565
Konqueror 3.5.5 allows remote malicious users to cause a denial of service (crash) by using JavaScript to read a child iframe having an ftp:// URI.
Kde Konqueror 3.5.5
6.4
CVSSv2
CVE-2007-3143
Visual truncation vulnerability in Konqueror 3.5.5 allows remote malicious users to spoof the address bar and possibly conduct phishing attacks via a long hostname, which is truncated after a certain number of characters, as demonstrated by a phishing attack using HTTP Basic Auth...
Kde Konqueror 3.5.5
2.6
CVSSv2
CVE-2007-0537
The KDE HTML library (kdelibs), as used by Konqueror 3.5.5, does not properly parse HTML comments, which allows remote malicious users to conduct cross-site scripting (XSS) attacks and bypass some XSS protection schemes by embedding certain HTML tags within a comment in a title t...
Kde Konqueror 3.5.5
5
CVSSv2
CVE-2007-2164
Konqueror 3.5.5 release 45.4 allows remote malicious users to cause a denial of service (browser crash or abort) via JavaScript that matches a regular expression against a long string, as demonstrated using /(.)*/.
Kde Konqueror 3.5.5
5
CVSSv2
CVE-2012-4514
rendering/render_replaced.cpp in Konqueror in KDE prior to 4.9.3 allows remote malicious users to cause a denial of service (NULL pointer dereference) via a crafted web page, related to "trying to reuse a frame with a null part."
Kde Kde 3.2.1
Kde Kde 3.2.3
Kde Kde 3.1.1
Kde Kde 3.1.2
Kde Kde 3.5
Kde Kde 3.3.x
Kde Kde 1.1
Kde Kde 4.7.3
Kde Kde 2.2
Kde Kde 1.x
Kde Kde 3.5.7
Kde Kde 2.0.1
Kde Kde 3.0.5
Kde Kde 3.1 Beta2
Kde Kde 3.0.1
Kde Kde 3.0
Kde Kde 3.0.2
Kde Kde
Kde Kde 3.1.5
Kde Kde 3.1.4
Kde Kde 3.2.0
Kde Kde 3.2
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »