Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kde kde 3.5 vulnerabilities and exploits
(subscribe to this query)
356
VMScore
CVE-2006-2449
KDE Display Manager (KDM) in KDE 3.2.0 up to 3.5.3 allows local users to read arbitrary files via a symlink attack related to the session type for login.
Kde Kde 3.2.2
Kde Kde 3.2.3
Kde Kde 3.4.3
Kde Kde 3.5
Kde Kde 3.2
Kde Kde 3.2.1
Kde Kde 3.4.1
Kde Kde 3.4.2
Kde Kde 3.3
Kde Kde 3.3.1
Kde Kde 3.5.2
Kde Kde 3.5.3
Kde Kde 3.3.2
Kde Kde 3.4
605
VMScore
CVE-2007-4569
backend/session.c in KDM in KDE 3.3.0 up to and including 3.5.7, when autologin is configured and "shutdown with password" is enabled, allows remote malicious users to bypass the password requirement and login to arbitrary accounts via unspecified vectors.
Kde Kde 3.4.0
Kde Kde 3.4.1
Kde Kde 3.5.3
Kde Kde 3.5.4
Kde Kde 3.3.1
Kde Kde 3.3.2
Kde Kde 3.4
Kde Kde 3.5.1
Kde Kde 3.5.2
Kde Kde 3.4.2
Kde Kde 3.4.3
Kde Kde 3.5.5
Kde Kde 3.5.6
Kde Kde 3.3
Kde Kde 3.3.0
Kde Kde 3.5
Kde Kde 3.5.0
Kde Kde 3.5.7
605
VMScore
CVE-2007-0104
The Adobe PDF specification 1.3, as implemented by (a) xpdf 3.0.1 patch 2, (b) kpdf in KDE prior to 3.5.5, (c) poppler prior to 0.5.4, and other products, allows remote malicious users to have an unknown impact, possibly including denial of service (infinite loop), arbitrary code...
Xpdf Xpdf 3.0 Pl2
Xpdf Xpdf 3.0
Xpdf Xpdf 3.0.1
Xpdf Xpdf 3.0.1 Pl1
Xpdf Xpdf 3.0.1 Pl2
Kde Kde 3.2
Kde Kde 3.4
Kde Kde 3.4.1
Kde Kde 3.2.3
Kde Kde 3.3
Kde Kde 3.5
Kde Kde 3.2.1
Kde Kde 3.2.2
Kde Kde 3.4.2
Kde Kde 3.4.3
Kde Kde 3.3.1
Kde Kde 3.3.2
265
VMScore
CVE-2006-3672
KDE Konqueror 3.5.1 and previous versions allows remote malicious users to cause a denial of service (application crash) by calling the replaceChild method on a DOM object, which triggers a null dereference, as demonstrated by calling document.replaceChild with a 0 (zero) argumen...
Kde Konqueror 3.0.2
Kde Konqueror 3.0.3
Kde Konqueror 3.1.5
Kde Konqueror 3.2.1
Kde Konqueror
Kde Konqueror 2.1.1
Kde Konqueror 2.1.2
Kde Konqueror 3.0.5
Kde Konqueror 3.0.5b
Kde Konqueror 3.2.2
Kde Konqueror 3.2.2.6
Kde Konqueror 3.0
Kde Konqueror 3.0.1
Kde Konqueror 3.1.3
Kde Konqueror 3.1.4
Kde Konqueror 3.3.1
Kde Konqueror 3.3.2
Kde Konqueror 2.2.1
Kde Konqueror 2.2.2
Kde Konqueror 3.1
Kde Konqueror 3.1.1
Kde Konqueror 3.1.2
1 EDB exploit
505
VMScore
CVE-2012-4514
rendering/render_replaced.cpp in Konqueror in KDE prior to 4.9.3 allows remote malicious users to cause a denial of service (NULL pointer dereference) via a crafted web page, related to "trying to reuse a frame with a null part."
Kde Kde 3.2.1
Kde Kde 3.2.3
Kde Kde 3.1.1
Kde Kde 3.1.2
Kde Kde 3.5
Kde Kde 3.3.x
Kde Kde 1.1
Kde Kde 4.7.3
Kde Kde 2.2
Kde Kde 1.x
Kde Kde 3.5.7
Kde Kde 2.0.1
Kde Kde 3.0.5
Kde Kde 3.1 Beta2
Kde Kde 3.0.1
Kde Kde 3.0
Kde Kde 3.0.2
Kde Kde
Kde Kde 3.1.5
Kde Kde 3.1.4
Kde Kde 3.2.0
Kde Kde 3.2
1 EDB exploit
435
VMScore
CVE-2007-1308
ecma/kjs_html.cpp in KDE JavaScript (KJS), as used in Konqueror in KDE 3.5.5, allows remote malicious users to cause a denial of service (crash) by accessing the content of an iframe with an ftp:// URI in the src attribute, probably due to a NULL pointer dereference.
Kde Konqueror 3.5.5
1 EDB exploit
440
VMScore
CVE-2006-6660
The nodeType function in KDE libkhtml 4.2.0 and previous versions, as used by Konquerer, KMail, and other programs, allows remote malicious users to cause a denial of service (crash) via malformed HTML tags, possibly involving a COL SPAN tag embedded in a RANGE tag.
Kde Libkhtml
2 EDB exploits
735
VMScore
CVE-2009-0689
Array index error in the (1) dtoa implementation in dtoa.c (aka pdtoa.c) and the (2) gdtoa (aka new dtoa) implementation in gdtoa/misc.c in libc, as used in multiple operating systems and products including in FreeBSD 6.4 and 7.2, NetBSD 5.0, OpenBSD 4.5, Mozilla Firefox 3.0.x pr...
Freebsd Freebsd 6.4
Openbsd Openbsd 4.5
Netbsd Netbsd 5.0
Mozilla Firefox 3.0.2
Mozilla Firefox 3.0.3
Mozilla Firefox 3.5
Mozilla Firefox 3.5.1
Freebsd Freebsd 7.2
Mozilla Firefox 3.0.13
Mozilla Firefox 3.0.14
Mozilla Firefox 3.0.8
Mozilla Firefox 3.0.9
Mozilla Firefox 3.0.11
Mozilla Firefox 3.0.12
Mozilla Firefox 3.0.6
Mozilla Firefox 3.0.7
K-meleon Project K-meleon 1.5.3
Mozilla Seamonkey 1.1.8
Mozilla Firefox 3.0.1
Mozilla Firefox 3.0.10
Mozilla Firefox 3.0.4
Mozilla Firefox 3.0.5
11 EDB exploits
1 Github repository
NA
CVE-2009-1563
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2009-0689. Reason: This candidate is a duplicate of CVE-2009-0689. Certain codebase relationships were not originally clear. Notes: All CVE users should reference CVE-2009-0689 instead of this candidate. All refer...
605
VMScore
CVE-2009-2408
Mozilla Network Security Services (NSS) prior to 3.12.3, Firefox prior to 3.0.13, Thunderbird prior to 2.0.0.23, and SeaMonkey prior to 1.1.18 do not properly handle a '\0' character in a domain name in the subject's Common Name (CN) field of an X.509 certificate, ...
Mozilla Network Security Services
Mozilla Firefox
Mozilla Seamonkey
Mozilla Thunderbird
Suse Linux Enterprise Server 9
Suse Linux Enterprise 11.0
Suse Linux Enterprise 10.0
Opensuse Opensuse
Debian Debian Linux 5.0
Canonical Ubuntu Linux 9.04
Canonical Ubuntu Linux 8.10
Canonical Ubuntu Linux 8.04
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started