CVE-2005-0205 – iDEFENSE Security Advisory 2005-02-28.2

https://notcve.org/view.php?id=CVE-2005-0205

28 Feb 2005 — KPPP 2.1.2 in KDE 3.1.5 and earlier, when setuid root without certain wrappers, does not properly close a privileged file descriptor for a domain socket, which allows local users to read and write to /etc/hosts and /etc/resolv.conf and gain control over DNS name resolution by opening a number of file descriptors before executing kppp. Local exploitation of a privileged file descriptor leak in KPPP can allow attackers to hijack a system's domain name resolution function. The vulnerability specifically exists... • http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000934 •