Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kde kde 3.3 vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2005-0011
Multiple vulnerabilities in fliccd, when installed setuid root as part of the kdeedu Kstars support for Instrument Neutral Distributed Interface (INDI) in KDE 3.3 to 3.3.2, allow local users and remote malicious users to execute arbitrary code via stack-based buffer overflows.
Kde Kde 3.3.1
Kde Kde 3.3.2
Kde Kde 3.3
7.5
CVSSv2
CVE-2006-0019
Heap-based buffer overflow in the encodeURI and decodeURI functions in the kjs JavaScript interpreter engine in KDE 3.2.0 up to and including 3.5.0 allows remote malicious users to execute arbitrary code via a crafted, UTF-8 encoded URI.
Kde Kde 3.2.0 Beta1
Kde Kde 3.2.1
Kde Kde 3.3.2
Kde Kde 3.3.x
Kde Kde 3.2.x
Kde Kde 3.3
Kde Kde 3.4.1
Kde Kde 3.4.2
Kde Kde 3.2
Kde Kde 3.2.0
Kde Kde 3.3.0
Kde Kde 3.3.1
Kde Kde 3.5.0
Kde Kde 3.2.2
Kde Kde 3.2.3
Kde Kde 3.4
Kde Kde 3.4.0
2.1
CVSSv2
CVE-2005-0365
The dcopidlng script in KDE 3.2.x and 3.3.x creates temporary files with predictable filenames, which allows local users to overwrite arbitrary files via a symlink attack.
Kde Kde 3.2.x
Kde Kde 3.3.x
4
CVSSv2
CVE-2006-2449
KDE Display Manager (KDM) in KDE 3.2.0 up to 3.5.3 allows local users to read arbitrary files via a symlink attack related to the session type for login.
Kde Kde 3.2.2
Kde Kde 3.2.3
Kde Kde 3.4.3
Kde Kde 3.5
Kde Kde 3.2
Kde Kde 3.2.1
Kde Kde 3.4.1
Kde Kde 3.4.2
Kde Kde 3.3
Kde Kde 3.3.1
Kde Kde 3.5.2
Kde Kde 3.5.3
Kde Kde 3.3.2
Kde Kde 3.4
6.8
CVSSv2
CVE-2007-4569
backend/session.c in KDM in KDE 3.3.0 up to and including 3.5.7, when autologin is configured and "shutdown with password" is enabled, allows remote malicious users to bypass the password requirement and login to arbitrary accounts via unspecified vectors.
Kde Kde 3.4.0
Kde Kde 3.4.1
Kde Kde 3.5.3
Kde Kde 3.5.4
Kde Kde 3.3.1
Kde Kde 3.3.2
Kde Kde 3.4
Kde Kde 3.5.1
Kde Kde 3.5.2
Kde Kde 3.4.2
Kde Kde 3.4.3
Kde Kde 3.5.5
Kde Kde 3.5.6
Kde Kde 3.3
Kde Kde 3.3.0
Kde Kde 3.5
Kde Kde 3.5.0
Kde Kde 3.5.7
2.1
CVSSv2
CVE-2004-1171
KDE 3.2.x and 3.3.0 up to and including 3.3.2, when saving credentials that are (1) manually entered by the user or (2) created by the SMB protocol handler, stores those credentials for plaintext in the user's .desktop file, which may be created with world-readable permissio...
Kde Kde 3.3
Kde Kde 3.3.1
Redhat Fedora Core Core 3.0
Kde Kde 3.3.2
Mandrakesoft Mandrake Linux 10.0
Kde Kde 3.2
Kde Kde 3.2.1
Mandrakesoft Mandrake Linux 10.1
Kde Kde 3.2.2
Kde Kde 3.2.3
Redhat Fedora Core Core 2.0
6.8
CVSSv2
CVE-2007-0104
The Adobe PDF specification 1.3, as implemented by (a) xpdf 3.0.1 patch 2, (b) kpdf in KDE prior to 3.5.5, (c) poppler prior to 0.5.4, and other products, allows remote malicious users to have an unknown impact, possibly including denial of service (infinite loop), arbitrary code...
Xpdf Xpdf 3.0 Pl2
Xpdf Xpdf 3.0
Xpdf Xpdf 3.0.1
Xpdf Xpdf 3.0.1 Pl1
Xpdf Xpdf 3.0.1 Pl2
Kde Kde 3.2
Kde Kde 3.4
Kde Kde 3.4.1
Kde Kde 3.2.3
Kde Kde 3.3
Kde Kde 3.5
Kde Kde 3.2.1
Kde Kde 3.2.2
Kde Kde 3.4.2
Kde Kde 3.4.3
Kde Kde 3.3.1
Kde Kde 3.3.2
5
CVSSv2
CVE-2005-2101
langen2kvtml in KDE 3.0 to 3.4.2 creates insecure temporary files in /tmp with predictable names, which allows local users to overwrite arbitrary files.
Kde Kde 3.0
Kde Kde 3.0.1
Kde Kde 3.0.2
Kde Kde 3.0.3
Kde Kde 3.2
Kde Kde 3.2.0 Beta1
Kde Kde 3.2.1
Kde Kde 3.2.2
Kde Kde 3.1.1
Kde Kde 3.1.2
Kde Kde 3.1.3
Kde Kde 3.1.4
Kde Kde 3.4
Kde Kde 3.4.1
Kde Kde 3.4.2
Kde Kde 3.0.5
Kde Kde 3.1
Kde Kde 3.1.5
Kde Kde 3.1 Beta1
Kde Kde 3.3
Kde Kde 3.3.2
Kde Kde 3.0.4
7.5
CVSSv2
CVE-2005-0754
Kommander in KDE 3.2 through KDE 3.4.0 executes data files without confirmation from the user, which allows remote malicious users to execute arbitrary code.
Kde Quanta 3.1
Conectiva Linux 10.0
Conectiva Linux 9.0
Kde Kde 3.2.1
Kde Kde 3.2.2
Ubuntu Ubuntu Linux 4.1
Ubuntu Ubuntu Linux 5.04
Kde Kde 3.2.3
Kde Kde 3.3
Gentoo Linux
Kde Kde 3.2
Redhat Fedora Core Core 3.0
Kde Kde 3.3.1
Kde Kde 3.3.2
Kde Kde 3.4
5
CVSSv2
CVE-2012-4514
rendering/render_replaced.cpp in Konqueror in KDE prior to 4.9.3 allows remote malicious users to cause a denial of service (NULL pointer dereference) via a crafted web page, related to "trying to reuse a frame with a null part."
Kde Kde 3.2.1
Kde Kde 3.2.3
Kde Kde 3.1.1
Kde Kde 3.1.2
Kde Kde 3.5
Kde Kde 3.3.x
Kde Kde 1.1
Kde Kde 4.7.3
Kde Kde 2.2
Kde Kde 1.x
Kde Kde 3.5.7
Kde Kde 2.0.1
Kde Kde 3.0.5
Kde Kde 3.1 Beta2
Kde Kde 3.0.1
Kde Kde 3.0
Kde Kde 3.0.2
Kde Kde
Kde Kde 3.1.5
Kde Kde 3.1.4
Kde Kde 3.2.0
Kde Kde 3.2
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
firewall
CVE-2024-35649
stored XSS
CVE-2022-28654
CVE-2020-35153
CVE-2024-27348
CVE-2022-28652
local users
CVE-2017-3506
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »