CVSS: 9.1EPSS: 0%CPEs: 6EXPL: 0CVE-2006-2933
https://notcve.org/view.php?id=CVE-2006-2933
27 Jul 2006 — kdesktop_lock in kdebase before 3.1.3-5.11 for KDE in Red Hat Enterprise Linux (RHEL) 3 does not properly terminate, which can prevent the screensaver from activating or prevent users from manually locking the desktop. kdesktop_lock en kdebase versiones anteriores a 3.1.3-5.11 para KDE en Red Hat Enterprise Linux (RHEL) 3 no termina apropiadamente, lo cual puede impedir que el salva-pantallas se active, o impedir que los usuarios bloqueen manualmente el escritorio. • http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=177755 •
CVSS: 5.5EPSS: 0%CPEs: 14EXPL: 0CVE-2006-2449
https://notcve.org/view.php?id=CVE-2006-2449
15 Jun 2006 — KDE Display Manager (KDM) in KDE 3.2.0 up to 3.5.3 allows local users to read arbitrary files via a symlink attack related to the session type for login. KDE Display Manager (KDM) en KDE v3.2.0 a v3.5.3 permite a usuarios locales leer archivos de su elección mediante un ataque de enlaces simbólicos relaciado con el tipo de sesión elegido en el inicio de sesión • http://secunia.com/advisories/20602 •
CVSS: 8.8EPSS: 14%CPEs: 17EXPL: 0CVE-2006-0019
https://notcve.org/view.php?id=CVE-2006-0019
20 Jan 2006 — Heap-based buffer overflow in the encodeURI and decodeURI functions in the kjs JavaScript interpreter engine in KDE 3.2.0 through 3.5.0 allows remote attackers to execute arbitrary code via a crafted, UTF-8 encoded URI. • ftp://ftp.kde.org/pub/kde/security_patches/post-3.4.3-kdelibs-kjs.diff •
CVSS: 7.8EPSS: 0%CPEs: 10EXPL: 0CVE-2005-2494
https://notcve.org/view.php?id=CVE-2005-2494
06 Sep 2005 — kcheckpass in KDE 3.2.0 up to 3.4.2 allows local users to gain root access via a symlink attack on lock files. • ftp://ftp.kde.org/pub/kde/security_patches/post-3.4.2-kdebase-kcheckpass.diff •
CVSS: 5.5EPSS: 0%CPEs: 27EXPL: 0CVE-2005-2101
https://notcve.org/view.php?id=CVE-2005-2101
17 Aug 2005 — langen2kvtml in KDE 3.0 to 3.4.2 creates insecure temporary files in /tmp with predictable names, which allows local users to overwrite arbitrary files. • http://secunia.com/advisories/16428 •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2005-1920
https://notcve.org/view.php?id=CVE-2005-1920
26 Jul 2005 — The (1) Kate and (2) Kwrite applications in KDE KDE 3.2.x through 3.4.0 do not properly set the same permissions on the backup file as were set on the original file, which could allow local users and possibly remote attackers to obtain sensitive information. Las aplicaciones Kate y Kwrite en KDE 3.2.x hasta la 3.4.0 no fijan adecuadamente los permisos en los ficheros de backup, lo que podría permitir que usuarios locales, y posiblemente también remotos, obtengan información confidencial. • http://marc.info/?l=bugtraq&m=112171434023679&w=2 • CWE-281: Improper Preservation of Permissions •
CVSS: 9.8EPSS: 10%CPEs: 20EXPL: 0CVE-2005-1852
https://notcve.org/view.php?id=CVE-2005-1852
26 Jul 2005 — Multiple integer overflows in libgadu, as used in Kopete in KDE 3.2.3 to 3.4.1, ekg before 1.6rc3, GNU Gadu, CenterICQ, Kadu, and other packages, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an incoming message. Múltiples desbordamientos de búfer en libgadu, usado en Kopete en KDE 3.2.3 hasta la 3.4.1, ekg anteriores a 1.6rc3, GNU Gadu, CenterICQ, Kadu, y otros paquetes, permite que atacantes remotos causen una denegación de servicio (caída) y posiblem... • http://lwn.net/Articles/144724 • CWE-189: Numeric Errors •
CVSS: 9.8EPSS: 2%CPEs: 18EXPL: 0CVE-2005-0754
https://notcve.org/view.php?id=CVE-2005-0754
22 Apr 2005 — Kommander in KDE 3.2 through KDE 3.4.0 executes data files without confirmation from the user, which allows remote attackers to execute arbitrary code. • ftp://ftp.kde.org/pub/kde/security_patches/post-3.4.0-kdewebdev-kommander.diff •
CVSS: 5.3EPSS: 3%CPEs: 2EXPL: 3CVE-2005-0404 – KDE KMail 1.7.1 - HTML EMail Remote Email Content Spoofing
https://notcve.org/view.php?id=CVE-2005-0404
13 Apr 2005 — KMail 1.7.1 in KDE 3.3.2 allows remote attackers to spoof email information, such as whether the email has been digitally signed or encrypted, via HTML formatted email. • https://www.exploit-db.com/exploits/25375 •
CVSS: 9.1EPSS: 21%CPEs: 1EXPL: 0CVE-2005-1046
https://notcve.org/view.php?id=CVE-2005-1046
12 Apr 2005 — Buffer overflow in the kimgio library for KDE 3.4.0 allows remote attackers to execute arbitrary code via a crafted PCX image file. • http://bugs.kde.org/show_bug.cgi?id=102328 •