Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kde kde 3.0.3 vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2003-0690
KDM in KDE 3.1.3 and previous versions does not verify whether the pam_setcred function call succeeds, which may allow malicious users to gain root privileges by triggering error conditions within PAM modules, as demonstrated in certain configurations of the MIT pam_krb5 module.
Kde Kde 2.2.1
Kde Kde 2.1.2
Kde Kde 2.0
Kde Kde 3.0.2
Kde Kde 3.0.5
Kde Kde 2.0 Beta
Kde Kde 2.2
Kde Kde 3.1.1a
Kde Kde 2.0.1
Kde Kde 3.0.5b
Kde Kde 3.1.2
Kde Kde 2.1
Kde Kde 3.0.1
Kde Kde 3.0.5a
Kde Kde 3.0.4
Kde Kde 3.0
Kde Kde 2.1.1
Kde Kde 1.1.2
Kde Kde 1.1.1
Kde Kde 3.1.3
Kde Kde 2.2.2
Kde Kde 3.1
7.5
CVSSv2
CVE-2003-0692
KDM in KDE 3.1.3 and previous versions uses a weak session cookie generation algorithm that does not provide 128 bits of entropy, which allows malicious users to guess session cookies via brute force methods and gain access to the user session.
Kde Kde 2.2.1
Kde Kde 2.1.2
Kde Kde 2.0
Kde Kde 3.0.2
Kde Kde 3.0.5
Kde Kde 2.0 Beta
Kde Kde 2.2
Kde Kde 3.1.1a
Kde Kde 2.0.1
Kde Kde 3.0.5b
Kde Kde 3.1.2
Kde Kde 2.1
Kde Kde 3.0.1
Kde Kde 3.0.5a
Kde Kde 3.0.4
Kde Kde 3.0
Kde Kde 2.1.1
Kde Kde 1.1.2
Kde Kde 1.1.1
Kde Kde 3.1.3
Kde Kde 2.2.2
Kde Kde 3.1
5
CVSSv2
CVE-2005-2101
langen2kvtml in KDE 3.0 to 3.4.2 creates insecure temporary files in /tmp with predictable names, which allows local users to overwrite arbitrary files.
Kde Kde 3.3.2
Kde Kde 3.0.2
Kde Kde 3.0.5
Kde Kde 3.2.0 Beta1
Kde Kde 3.3.1
Kde Kde 3.2.2
Kde Kde 3.2.1
Kde Kde 3.1.5
Kde Kde 3.1.2
Kde Kde 3.0.1
Kde Kde 3.0.5a
Kde Kde 3.0.4
Kde Kde 3.0
Kde Kde 3.4
Kde Kde 3.1 Beta2
Kde Kde 3.1.3
Kde Kde 3.1
Kde Kde 3.1 Alpha1
Kde Kde 3.1.4
Kde Kde 3.3
Kde Kde 3.0.3
Kde Kde 3.2
5
CVSSv2
CVE-2004-0870
KDE Konqueror does not prevent cookies that are sent over an insecure channel (HTTP) from also being sent over a secure channel (HTTPS/SSL) in the same domain, which could allow remote malicious users to steal cookies and conduct unauthorized activities, aka "Cross Security ...
Kde Konqueror 3.1.2
Kde Konqueror 3.0.2
Kde Konqueror 2.2.2
Kde Konqueror 3.1
Kde Konqueror 3.0
Kde Konqueror 3.0.1
Kde Konqueror 3.0.3
Kde Konqueror 3.1.1
Kde Konqueror 2.1.2
Kde Konqueror 3.2.3
Kde Konqueror 3.0.5b
Kde Konqueror 2.2.1
Kde Konqueror 3.1.3
Kde Konqueror 3.1.4
Kde Konqueror 3.2.1
Kde Konqueror 3.1.5
Kde Konqueror 2.1.1
Kde Konqueror 3.0.5
4.6
CVSSv2
CVE-2005-0078
The KDE screen saver in KDE prior to 3.0.5 does not properly check the return value from a certain function call, which allows attackers with physical access to cause a crash and access the desktop session.
Kde Kde 2.2.1
Kde Kde 3.0 Beta 1
Kde Kde 2.0
Kde Kde 3.0.2
Redhat Enterprise Linux Desktop 3.0
Kde Kde 2.2
Redhat Enterprise Linux 3.0
Redhat Enterprise Linux 2.1
Kde Kde 2.0.1
Kde Kde 2.2 Beta1
Debian Debian Linux 3.0
Kde Kde 2.1
Kde Kde 3.0.1
Redhat Linux Advanced Workstation 2.1
Kde Kde 2.1 Beta2
Kde Kde 3.0 Beta 2
Kde Kde 3.0.4
Kde Kde 3.0
Kde Kde 1.1.2
Kde Kde 1.1.1
Kde Kde 1.1
Kde Kde 1.0
2.6
CVSSv2
CVE-2006-3672
KDE Konqueror 3.5.1 and previous versions allows remote malicious users to cause a denial of service (application crash) by calling the replaceChild method on a DOM object, which triggers a null dereference, as demonstrated by calling document.replaceChild with a 0 (zero) argumen...
Kde Konqueror 3.2.2.6
Kde Konqueror 3.1.2
Kde Konqueror 3.0.2
Kde Konqueror 3.3
Kde Konqueror 2.2.2
Kde Konqueror 3.1
Kde Konqueror 3.0
Kde Konqueror 3.3.1
Kde Konqueror 3.0.1
Kde Konqueror 3.0.3
Kde Konqueror 3.1.1
Kde Konqueror 2.1.2
Kde Konqueror
Kde Konqueror 3.2.3
Kde Konqueror 3.0.5b
Kde Konqueror 2.2.1
Kde Konqueror 3.1.3
Kde Konqueror 3.3.2
Kde Konqueror 3.1.4
Kde Konqueror 3.2.1
Kde Konqueror 3.1.5
Kde Konqueror 3.2.2
1 EDB exploit
6.4
CVSSv2
CVE-2005-4684
Konqueror can associate a cookie with multiple domains when the DNS resolver has a non-root domain in its search list, which allows remote malicious users to trick a user into accepting a cookie for a hostname formed via search-list expansion of the hostname entered by the user, ...
Kde Konqueror 3.2.2.6
Kde Konqueror 3.1.2
Kde Konqueror 3.0.2
Kde Konqueror 3.3
Kde Konqueror 2.2.2
Kde Konqueror 3.1
Kde Konqueror 3.0
Kde Konqueror 3.3.1
Kde Konqueror 3.0.1
Kde Konqueror 3.0.3
Kde Konqueror 3.1.1
Kde Konqueror 2.1.2
Kde Konqueror 3.2.3
Kde Konqueror 3.0.5b
Kde Konqueror 2.2.1
Kde Konqueror 3.1.3
Kde Konqueror 0.1
Kde Konqueror 3.3.2
Kde Konqueror 3.1.4
Kde Konqueror 3.2.1
Kde Konqueror 3.1.5
Kde Konqueror 2.1.1
5
CVSSv2
CVE-2012-4514
rendering/render_replaced.cpp in Konqueror in KDE prior to 4.9.3 allows remote malicious users to cause a denial of service (NULL pointer dereference) via a crafted web page, related to "trying to reuse a frame with a null part."
Kde Kde 3.3.2
Kde Kde 2.2.1
Kde Kde 3.0 Beta 1
Kde Kde 2.1.2
Kde Kde 2.0
Kde Kde 4.0.3
Kde Kde 4.0.2
Kde Kde 3.0.2
Kde Kde 3.0.5
Kde Kde 2.0 Beta
Kde Kde 2.2
Kde Kde 3.2.0 Beta1
Kde Kde 3.3.1
Kde Kde 3.1.1a
Kde Kde 3.5.5
Kde Kde 2.0.1
Kde Kde 2.2 Beta1
Kde Kde 3.2.2
Kde Kde 3.2.1
Kde Kde
Kde Kde 3.1.5
Kde Kde 3.4.3
1 EDB exploit
7.5
CVSSv2
CVE-2004-1158
Konqueror 3.x up to 3.2.2-6, and possibly other versions, allows remote malicious users to spoof arbitrary web sites by injecting content from one window into a target window or tab whose name is known but resides in a different domain, as demonstrated using a pop-up window on a ...
Kde Konqueror 3.2.2.6
Kde Konqueror 3.1.2
Kde Konqueror 3.0.2
Kde Konqueror 3.3
Kde Konqueror 2.2.2
Kde Konqueror 3.1
Kde Konqueror 3.0
Kde Konqueror 3.3.1
Kde Konqueror 3.0.1
Kde Konqueror 3.0.3
Kde Konqueror 3.1.1
Kde Konqueror 2.1.2
Kde Konqueror 3.2.3
Kde Konqueror 3.0.5b
Kde Konqueror 2.2.1
Kde Konqueror 3.1.3
Kde Konqueror 3.3.2
Kde Konqueror 3.1.4
Kde Konqueror 3.2.1
Kde Konqueror 3.1.5
Kde Konqueror 2.1.1
Kde Konqueror 3.0.5
7.5
CVSSv2
CVE-2004-0746
Konqueror in KDE 3.2.3 and previous versions allows web sites to set cookies for country-specific top-level domains, such as .ltd.uk, .plc.uk and .firm.in, which could allow remote malicious users to perform a session fixation attack and hijack a user's HTTP session.
Kde Konqueror 3.1.2
Kde Konqueror 3.0.2
Kde Konqueror 3.1
Kde Konqueror 3.0
Kde Konqueror 3.0.1
Kde Konqueror 3.0.3
Kde Konqueror 3.1.1
Kde Konqueror 3.2.3
Kde Konqueror 3.0.5b
Kde Konqueror 3.1.3
Kde Konqueror 3.2.1
Kde Konqueror 3.1.5
Kde Konqueror 3.0.5
Suse Suse Linux 9.0
Suse Suse Linux 8.2
Suse Suse Linux 8
Mandrakesoft Mandrake Linux 9.2
Suse Suse Linux 9.1
Kde Kde 3.1.3
Gentoo Linux 1.4
Mandrakesoft Mandrake Linux 10.0
Kde Kde 3.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »