GCVE - cpe:2.3:o:kde:kde:3.5:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:o:kde:kde:3.5:*:*:*:*:*:*:*

part: o version: 3.5 update: *

Vendor	Kde (`d8ba08cf-7ec1-5504-a5b9-f8cfa50ca850`)
Product	Kde (`a408b698-7d8a-5093-91eb-ad30be28638d`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2012-4514`	vulnerable	2026-06-03 14:32:19.317889	Details available rendering/render_replaced.cpp in Konqueror in KDE before 4.9.3 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted web page, related to "trying to reuse a frame with a null part." Published: 2012-11-11T11:00:00.000Z Updated: 2024-08-06T20:35:09.931Z Open on db.gcve.eu Reference links https://bugs.kde.org/show_bug.cgi?id=271528 http://quickgit.kde.org/index.php?p=kdelibs.git&a=commitdiff&h=65464349951e0df9b5d80c2eb3cc7458d54923ae http://www.nth-dimension.org.uk/pub/NDSA20121010.txt.asc http://www.openwall.com/lists/oss-security/2012/10/11/11 http://archives.neohapsis.com/archives/bugtraq/2012-11/0005.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2007-4569`	vulnerable	2026-06-03 14:28:18.858951	Details available backend/session.c in KDM in KDE 3.3.0 through 3.5.7, when autologin is configured and "shutdown with password" is enabled, allows remote attackers to bypass the password requirement and login to arbitrary accounts via unspecified vectors. Published: 2007-09-21T18:00:00.000Z Updated: 2024-08-07T15:01:09.954Z Open on db.gcve.eu Reference links http://secunia.com/advisories/27271 http://security.gentoo.org/glsa/glsa-200710-15.xml http://secunia.com/advisories/26904 http://secunia.com/advisories/26894 https://www.redhat.com/archives/fedora-package-announce/2007-October/msg00022.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2007-0104`	vulnerable	2026-06-03 14:27:55.992042	Details available The Adobe PDF specification 1.3, as implemented by (a) xpdf 3.0.1 patch 2, (b) kpdf in KDE before 3.5.5, (c) poppler before 0.5.4, and other products, allows remote attackers to have an unknown impact, possibly including denial of service (infinite loop), arbitrary code execution, or memory corruption, via a PDF file with a (1) crafted catalog dictionary or (2) a crafted Pages attribute that references an invalid page tree node. Published: 2007-01-09T00:00:00.000Z Updated: 2024-08-07T12:03:37.070Z Open on db.gcve.eu Reference links http://secunia.com/advisories/23815 http://www.mandriva.com/security/advisories?name=MDKSA-2007:022 http://www.mandriva.com/security/advisories?name=MDKSA-2007:020 http://www.us-cert.gov/cas/techalerts/TA07-072A.html http://www.mandriva.com/security/advisories?name=MDKSA-2007:021	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2006-2449`	vulnerable	2026-06-03 14:27:32.252542	Details available KDE Display Manager (KDM) in KDE 3.2.0 up to 3.5.3 allows local users to read arbitrary files via a symlink attack related to the session type for login. Published: 2006-06-15T10:00:00.000Z Updated: 2024-08-07T17:51:04.699Z Open on db.gcve.eu Reference links http://secunia.com/advisories/21662 http://secunia.com/advisories/20890 http://secunia.com/advisories/20674 http://www.osvdb.org/26511 http://secunia.com/advisories/20702	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.