CVSS: 7.5EPSS: 9%CPEs: 10EXPL: 0CVE-2002-1306
https://notcve.org/view.php?id=CVE-2002-1306
Multiple buffer overflows in LISa on KDE 2.x for 2.1 and later, and KDE 3.x before 3.0.4, allow (1) local and possibly remote attackers to execute arbitrary code via the "lisa" daemon, and (2) remote attackers to execute arbitrary code via a certain "lan://" URL. Múltiples desbordamientos de búfer en LISa en KDE 2.x a partir de 2.1, y KDE 3.x anteriores a 3.0.4 permiten a atacantes locales y posiblemente remotos ejecutar código mediante el demonio "lisa", y a atacantes remotos ejecutar código arbitrario mediante una cierta URL de tipo "lan://" • http://marc.info/?l=bugtraq&m=103712329102632&w=2 http://marc.info/?l=bugtraq&m=103728981029342&w=2 http://www.ciac.org/ciac/bulletins/n-020.shtml http://www.debian.org/security/2002/dsa-214 http://www.iss.net/security_center/static/10597.php http://www.iss.net/security_center/static/10598.php http://www.kde.org/info/security/advisory-20021111-2.txt http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-080.php http://www.novell.com/linux/security/ •
CVSS: 7.5EPSS: 9%CPEs: 11EXPL: 0CVE-2002-1281
https://notcve.org/view.php?id=CVE-2002-1281
Unknown vulnerability in the rlogin KIO subsystem (rlogin.protocol) of KDE 2.x 2.1 and later, and KDE 3.x 3.0.4 and earlier, allows local and remote attackers to execute arbitrary code via a certain URL. Vulnerabilidad desconocida en el subsistema KIO (rlogin.protocol) de KDE 2.x 2.1 y posteriores, y KDE 3.x 3.0.4 y posteriores, permite a atacantes locales y remotos ejecutar código arbitrario mediante cierta URL. • ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2003-012.0.txt http://marc.info/?l=bugtraq&m=103712550205730&w=2 http://marc.info/?l=bugtraq&m=103728981029342&w=2 http://secunia.com/advisories/8298 http://www.debian.org/security/2002/dsa-204 http://www.iss.net/security_center/static/10602.php http://www.kde.org/info/security/advisory-20021111-1.txt http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-079.php http://www.redhat.com/support/errata/RH •
CVSS: 7.5EPSS: 9%CPEs: 11EXPL: 0CVE-2002-1282
https://notcve.org/view.php?id=CVE-2002-1282
Unknown vulnerability in the telnet KIO subsystem (telnet.protocol) of KDE 2.x 2.1 and later allows local and remote attackers to execute arbitrary code via a certain URL. Vulnerabilidad desconocida en el subsistema KIO de telnet (telnet.protocol) de KDE 2.X 2.1 y posteriores permite a atacantes remotos ejecutar código arbitrario mediante una cierta URL. • ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2003-012.0.txt http://marc.info/?l=bugtraq&m=103712550205730&w=2 http://marc.info/?l=bugtraq&m=103728981029342&w=2 http://secunia.com/advisories/8298 http://www.debian.org/security/2002/dsa-204 http://www.iss.net/security_center/static/10603.php http://www.kde.org/info/security/advisory-20021111-1.txt http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-079.php http://www.redhat.com/support/errata/RH •
CVSS: 7.2EPSS: 0%CPEs: 12EXPL: 0CVE-2002-1247
https://notcve.org/view.php?id=CVE-2002-1247
Buffer overflow in LISa allows local users to gain access to a raw socket via a long LOGNAME environment variable for the resLISa daemon. Desbordamiento de búfer en resLISa en KDE 2.1 A 3.0.4 y LISa anteriores a 0.2.2 permite a usuarios locales obtener acceso a raw sockets mediante una variable de entorno LOGNAME larga. • http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0068.html http://marc.info/?l=bugtraq&m=103704823501757&w=2 http://marc.info/?l=bugtraq&m=103712329102632&w=2 http://marc.info/?l=bugtraq&m=103728981029342&w=2 http://www.ciac.org/ciac/bulletins/n-020.shtml http://www.debian.org/security/2002/dsa-193 http://www.idefense.com/advisory/11.11.02.txt http://www.iss.net/security_center/static/10592.php http://www.mandriva.com/security/advisories?name=MDKSA&# •
CVSS: 5.0EPSS: 1%CPEs: 4EXPL: 2CVE-2002-1224 – KDE 3.0.x - KPF Icon Option File Disclosure
https://notcve.org/view.php?id=CVE-2002-1224
Directory traversal vulnerability in kpf for KDE 3.0.1 through KDE 3.0.3a allows remote attackers to read arbitrary files as the kpf user via a URL with a modified icon parameter. Vulnerablidad de atravesamiento de directorios en kpf de KDE 3.0.1 a 3.0.3a permite a atacantes remotos leer ficheros arbitrarios como el usuario de kpf. • https://www.exploit-db.com/exploits/21934 http://archives.neohapsis.com/archives/bugtraq/2002-10/0164.html http://online.securityfocus.com/archive/1/294991 http://www.iss.net/security_center/static/10347.php http://www.kde.org/info/security/advisory-20021008-2.txt http://www.redhat.com/support/errata/RHSA-2002-220.html http://www.securityfocus.com/bid/5951 •