KDE Software Compilation (SC) 4.3.4
Approved changes feed: RSS · Atom
cpe:2.3:a:kde:kde_sc:4.3.4:*:*:*:*:*:*:*
part: a version: 4.3.4 update: *
| Vendor | Kde (d8ba08cf-7ec1-5504-a5b9-f8cfa50ca850) |
|---|---|
| Product | Kde Sc (a5926000-7aa3-515f-acdf-69ed3f941c05) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2011-1586 |
vulnerable | 2026-06-03 14:31:02.785620 |
Details available
Directory traversal vulnerability in the KGetMetalink::File::isValidNameAttr function in ui/metalinkcreator/metalinker.cpp in KGet in KDE SC 4.6.2 and earlier allows remote attackers to create arbitrary files via a .. (dot dot) in the name attribute of a file element in a metalink file. NOTE: this vulnerability exists because of an incomplete fix for CVE-2010-1000.
Published: 2011-04-27T00:00:00.000Z
Updated: 2024-08-06T22:28:42.059Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2010-2575 |
vulnerable | 2026-06-03 14:30:26.150079 |
Details available
Heap-based buffer overflow in the RLE decompression functionality in the TranscribePalmImageToJPEG function in generators/plucker/inplug/image.cpp in Okular in KDE SC 4.3.0 through 4.5.0 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted image in a PDB file.
Published: 2010-08-30T20:00:00.000Z
Updated: 2024-08-07T02:39:37.989Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2010-1511 |
vulnerable | 2026-06-03 14:30:15.203276 |
Details available
KGet 2.4.2 in KDE SC 4.0.0 through 4.4.3 does not properly request download confirmation from the user, which makes it easier for remote attackers to overwrite arbitrary files via a crafted metalink file.
Published: 2010-05-17T20:42:00.000Z
Updated: 2024-08-07T01:28:41.483Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2010-1000 |
vulnerable | 2026-06-03 14:30:11.931518 |
Details available
Directory traversal vulnerability in KGet in KDE SC 4.0.0 through 4.4.3 allows remote attackers to create arbitrary files via directory traversal sequences in the name attribute of a file element in a metalink file.
Published: 2010-05-17T20:42:00.000Z
Updated: 2024-08-07T01:06:52.535Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2010-0436 |
vulnerable | 2026-06-03 14:30:09.009994 |
Details available
Race condition in backend/ctrl.c in KDM in KDE Software Compilation (SC) 2.2.0 through 4.4.2 allows local users to change the permissions of arbitrary files, and consequently gain privileges, by blocking the removal of a certain directory that contains a control socket, related to improper interaction with ksm.
Published: 2010-04-15T17:00:00.000Z
Updated: 2024-08-07T00:52:17.347Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.