// For flags

CVE-2004-1165

KDE FTP - KIOSlave URI Arbitrary FTP Server Command Execution

Severity Score

9.8
*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

1
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

Konqueror 3.3.1 allows remote attackers to execute arbitrary FTP commands via an ftp:// URL that contains a URL-encoded newline ("%0a") before the FTP command, which causes the commands to be inserted into the resulting FTP session, as demonstrated using a PORT command.

KDE Security Advisory: KDE applications which use the ftp kioslave, e.g. Konqueror, allow remote attackers to execute arbitrary FTP commands via an ftp:// URL that contains an URL-encoded newline ( %0a ) before the ftp command, which causes the commands to be inserted into the resulting FTP session. Due to similarities between the ftp and the SMTP protocol, this vulnerability allows to misuse the ftp slave to connect to a SMTP server and issue arbitrary commands, like sending an email. Systems affected: All KDE releases up to including KDE 3.3.2.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High
Attack Vector
Network
Attack Complexity
Low
Authentication
None
Confidentiality
Partial
Integrity
Partial
Availability
Partial
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2004-12-06 First Exploit
  • 2004-12-09 CVE Reserved
  • 2004-12-10 CVE Published
  • 2024-08-08 CVE Updated
  • 2025-03-30 EPSS Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
CWE
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Kde
Search vendor "Kde"
 Kdelibs
Search vendor "Kde" for product "Kdelibs"
 3.1
Search vendor "Kde" for product "Kdelibs" and version "3.1"
-
Affected
Kde
Search vendor "Kde"
 Kdelibs
Search vendor "Kde" for product "Kdelibs"
 3.1.1
Search vendor "Kde" for product "Kdelibs" and version "3.1.1"
-
Affected
Kde
Search vendor "Kde"
 Kdelibs
Search vendor "Kde" for product "Kdelibs"
 3.1.2
Search vendor "Kde" for product "Kdelibs" and version "3.1.2"
-
Affected
Kde
Search vendor "Kde"
 Kdelibs
Search vendor "Kde" for product "Kdelibs"
 3.1.3
Search vendor "Kde" for product "Kdelibs" and version "3.1.3"
-
Affected
Kde
Search vendor "Kde"
 Kdelibs
Search vendor "Kde" for product "Kdelibs"
 3.1.4
Search vendor "Kde" for product "Kdelibs" and version "3.1.4"
-
Affected
Kde
Search vendor "Kde"
 Kdelibs
Search vendor "Kde" for product "Kdelibs"
 3.1.5
Search vendor "Kde" for product "Kdelibs" and version "3.1.5"
-
Affected
Kde
Search vendor "Kde"
 Kdelibs
Search vendor "Kde" for product "Kdelibs"
 3.2
Search vendor "Kde" for product "Kdelibs" and version "3.2"
-
Affected
Kde
Search vendor "Kde"
 Kdelibs
Search vendor "Kde" for product "Kdelibs"
 3.2.1
Search vendor "Kde" for product "Kdelibs" and version "3.2.1"
-
Affected
Kde
Search vendor "Kde"
 Kdelibs
Search vendor "Kde" for product "Kdelibs"
 3.2.2
Search vendor "Kde" for product "Kdelibs" and version "3.2.2"
-
Affected
Kde
Search vendor "Kde"
 Konqueror
Search vendor "Kde" for product "Konqueror"
 3.3.1
Search vendor "Kde" for product "Konqueror" and version "3.3.1"
-
Affected