CVE-2000-0460 – KDE 1.1/1.1.1/1.1.2/1.2 - kdesud DISPLAY Environment Variable Overflow
https://notcve.org/view.php?id=CVE-2000-0460
Buffer overflow in KDE kdesud on Linux allows local uses to gain privileges via a long DISPLAY environmental variable. • https://www.exploit-db.com/exploits/19970 http://archives.neohapsis.com/archives/bugtraq/2000-05/0353.html http://www.securityfocus.com/bid/1274 •
CVE-2000-0393 – KDE 1.1/1.1.1/1.2/2.0 kscd - SHELL Environmental Variable
https://notcve.org/view.php?id=CVE-2000-0393
The KDE kscd program does not drop privileges when executing a program specified in a user's SHELL environmental variable, which allows the user to gain privileges by specifying an alternate program to execute. • https://www.exploit-db.com/exploits/19915 http://archives.neohapsis.com/archives/bugtraq/2000-05/0172.html http://www.novell.com/linux/security/advisories/suse_security_announce_50.html http://www.securityfocus.com/bid/1206 •
CVE-2000-0371
https://notcve.org/view.php?id=CVE-2000-0371
The libmediatool library used for the KDE mediatool allows local users to create arbitrary files via a symlink attack. La librería libmediatool usada para el mediatool de KDE permite a usuarios locales crear ficheros arbitrarios mediante un ataque de enlaces simbólicos (symlink attack) • ftp://ftp.calderasystems.com/pub/OpenLinux/security/CSSA-1999-005.0.txt http://www.securityfocus.com/bid/1269 •