CVE-2003-0370
https://notcve.org/view.php?id=CVE-2003-0370
Konqueror Embedded and KDE 2.2.2 and earlier does not validate the Common Name (CN) field for X.509 Certificates, which could allow remote attackers to spoof certificates via a man-in-the-middle attack. Konqueror Embedded y KDE 2.2.2 y anteriores no validan el campo Common Name (CN) en certificados X.509, lo que permitiría que atacantes remotos falsifiquen certificados mediante un ataque "man-in-the-middle". • http://lists.grok.org.uk/pipermail/full-disclosure/2003-May/004983.html http://www.debian.org/security/2003/dsa-361 http://www.kde.org/info/security/advisory-20030602-1.txt http://www.redhat.com/support/errata/RHSA-2003-192.html http://www.redhat.com/support/errata/RHSA-2003-193.html http://www.securityfocus.com/archive/1/320707 http://www.securityfocus.com/bid/7520 http://www.turbolinux.com/security/TLSA-2003-36.txt https://access.redhat.com/security/cve/CVE-2003 •
CVE-1999-0781
https://notcve.org/view.php?id=CVE-1999-0781
KDE allows local users to execute arbitrary commands by setting the KDEDIR environmental variable to modify the search path that KDE uses to locate its executables. • http://marc.info/?l=bugtraq&m=91141486301691&w=2 •
CVE-1999-0782
https://notcve.org/view.php?id=CVE-1999-0782
KDE kppp allows local users to create a directory in an arbitrary location via the HOME environmental variable. • http://marc.info/?l=bugtraq&m=91141486301691&w=2 •
CVE-1999-1107
https://notcve.org/view.php?id=CVE-1999-1107
Buffer overflow in kppp in KDE allows local users to gain root access via a long PATH environmental variable. • http://marc.info/?l=bugtraq&m=91141486301691&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/1650 •
CVE-1999-0780
https://notcve.org/view.php?id=CVE-1999-0780
KDE klock allows local users to kill arbitrary processes by specifying an arbitrary PID in the .kss.pid file. • http://marc.info/?l=bugtraq&m=91141486301691&w=2 •