Approved changes feed: RSS · Atom
cpe:2.3:o:kde:kde:3.2.3:*:*:*:*:*:*:*
part: o version: 3.2.3 update: *
| Vendor | Kde (d8ba08cf-7ec1-5504-a5b9-f8cfa50ca850) |
|---|---|
| Product | Kde (a408b698-7d8a-5093-91eb-ad30be28638d) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2012-4514 |
vulnerable | 2026-06-03 14:32:19.311620 |
Details available
rendering/render_replaced.cpp in Konqueror in KDE before 4.9.3 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted web page, related to "trying to reuse a frame with a null part."
Published: 2012-11-11T11:00:00.000Z
Updated: 2024-08-06T20:35:09.931Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2007-0104 |
vulnerable | 2026-06-03 14:27:55.987937 |
Details available
The Adobe PDF specification 1.3, as implemented by (a) xpdf 3.0.1 patch 2, (b) kpdf in KDE before 3.5.5, (c) poppler before 0.5.4, and other products, allows remote attackers to have an unknown impact, possibly including denial of service (infinite loop), arbitrary code execution, or memory corruption, via a PDF file with a (1) crafted catalog dictionary or (2) a crafted Pages attribute that references an invalid page tree node.
Published: 2007-01-09T00:00:00.000Z
Updated: 2024-08-07T12:03:37.070Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2006-2449 |
vulnerable | 2026-06-03 14:27:32.246366 |
Details available
KDE Display Manager (KDM) in KDE 3.2.0 up to 3.5.3 allows local users to read arbitrary files via a symlink attack related to the session type for login.
Published: 2006-06-15T10:00:00.000Z
Updated: 2024-08-07T17:51:04.699Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2006-0019 |
vulnerable | 2026-06-03 14:27:14.952359 |
Details available
Heap-based buffer overflow in the encodeURI and decodeURI functions in the kjs JavaScript interpreter engine in KDE 3.2.0 through 3.5.0 allows remote attackers to execute arbitrary code via a crafted, UTF-8 encoded URI.
Published: 2006-01-20T21:00:00.000Z
Updated: 2024-08-07T16:18:20.752Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2005-2494 |
vulnerable | 2026-06-03 14:27:02.221920 |
Details available
kcheckpass in KDE 3.2.0 up to 3.4.2 allows local users to gain root access via a symlink attack on lock files.
Published: 2005-09-06T04:00:00.000Z
Updated: 2024-08-07T22:30:00.960Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2005-2101 |
vulnerable | 2026-06-03 14:27:01.113485 |
Details available
langen2kvtml in KDE 3.0 to 3.4.2 creates insecure temporary files in /tmp with predictable names, which allows local users to overwrite arbitrary files.
Published: 2005-08-17T04:00:00.000Z
Updated: 2024-08-07T22:15:37.383Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2005-1852 |
vulnerable | 2026-06-03 14:27:00.416497 |
Details available
Multiple integer overflows in libgadu, as used in Kopete in KDE 3.2.3 to 3.4.1, ekg before 1.6rc3, GNU Gadu, CenterICQ, Kadu, and other packages, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an incoming message.
Published: 2005-07-26T04:00:00.000Z
Updated: 2024-08-07T22:06:57.721Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2005-0754 |
vulnerable | 2026-06-03 14:26:51.487267 |
Details available
Kommander in KDE 3.2 through KDE 3.4.0 executes data files without confirmation from the user, which allows remote attackers to execute arbitrary code.
Published: 2005-04-24T04:00:00.000Z
Updated: 2024-08-07T21:28:27.162Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2005-0206 |
vulnerable | 2026-06-03 14:26:49.655013 |
Details available
The patch for integer overflow vulnerabilities in Xpdf 2.0 and 3.0 (CVE-2004-0888) is incomplete for 64-bit architectures on certain Linux distributions such as Red Hat, which could leave Xpdf users exposed to the original vulnerabilities.
Published: 2005-02-15T05:00:00.000Z
Updated: 2024-08-07T21:05:25.397Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2004-1491 |
vulnerable | 2026-06-03 14:26:39.865843 |
Details available
Opera 7.54 and earlier uses kfmclient exec to handle unknown MIME types, which allows remote attackers to execute arbitrary code via a shortcut or launcher that contains an Exec entry.
Published: 2005-02-17T05:00:00.000Z
Updated: 2024-08-08T00:53:24.096Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2004-1171 |
vulnerable | 2026-06-03 14:26:38.742136 |
Details available
KDE 3.2.x and 3.3.0 through 3.3.2, when saving credentials that are (1) manually entered by the user or (2) created by the SMB protocol handler, stores those credentials for plaintext in the user's .desktop file, which may be created with world-readable permissions, which could allow local users to obtain usernames and passwords for remote resources such as SMB shares.
Published: 2004-12-10T05:00:00.000Z
Updated: 2024-08-08T00:39:00.912Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2004-1125 |
vulnerable | 2026-06-03 14:26:38.522417 |
Details available
Buffer overflow in the Gfx::doImage function in Gfx.cc for xpdf 3.00, and other products that share code such as tetex-bin and kpdf in KDE 3.2.x to 3.2.3 and 3.3.x to 3.3.2, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted PDF file that causes the boundaries of a maskColors array to be exceeded.
Published: 2004-12-22T05:00:00.000Z
Updated: 2024-08-08T00:39:00.871Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2004-0889 |
vulnerable | 2026-06-03 14:26:37.357697 |
Details available
Multiple integer overflows in xpdf 3.0, and other packages that use xpdf code such as CUPS, allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, a different set of vulnerabilities than those identified by CVE-2004-0888.
Published: 2004-10-26T04:00:00.000Z
Updated: 2024-08-08T00:31:48.137Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2004-0888 |
vulnerable | 2026-06-03 14:26:37.355345 |
Details available
Multiple integer overflows in xpdf 2.0 and 3.0, and other packages that use xpdf code such as CUPS, gpdf, and kdegraphics, allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, a different set of vulnerabilities than those identified by CVE-2004-0889.
Published: 2004-10-26T04:00:00.000Z
Updated: 2024-08-08T00:31:47.615Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2004-0886 |
vulnerable | 2026-06-03 14:26:37.312305 |
Details available
Multiple integer overflows in libtiff 3.6.1 and earlier allow remote attackers to cause a denial of service (crash or memory corruption) via TIFF images that lead to incorrect malloc calls.
Published: 2004-10-26T04:00:00.000Z
Updated: 2024-08-08T00:31:47.875Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2004-0803 |
vulnerable | 2026-06-03 14:26:36.965007 |
Details available
Multiple vulnerabilities in the RLE (run length encoding) decoders for libtiff 3.6.1 and earlier, related to buffer overflows and integer overflows, allow remote attackers to execute arbitrary code via TIFF files.
Published: 2004-10-26T04:00:00.000Z
Updated: 2024-08-08T00:31:47.951Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.