CyberSec.Space Logo
返回 CVE 浏览器

CVE-2005-0011

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1830%
EPSS Percentile41.56th
Published2005年5月2日
Last Modified2026年4月16日

Vulnerability Description

Multiple vulnerabilities in fliccd, when installed setuid root as part of the kdeedu Kstars support for Instrument Neutral Distributed Interface (INDI) in KDE 3.3 to 3.3.2, allow local users and remote attackers to execute arbitrary code via stack-based buffer overflows.

Affected Platforms (CPE)

💻
Kde

Kde

= 3.3
💻
Kde

Kde

= 3.3.1
💻
Kde

Kde

= 3.3.2

References & Advisories

🔗 http://secunia.com/advisories/14306
🔗 http://www.gentoo.org/security/en/glsa/glsa-200502-23.xml
🔗 http://www.kde.org/info/security/advisory-20050215-1.txt
🔗 http://www.redhat.com/archives/fedora-announce-list/2005-February/msg00044.html
🔗 http://secunia.com/advisories/14306
🔗 http://www.gentoo.org/security/en/glsa/glsa-200502-23.xml
🔗 http://www.kde.org/info/security/advisory-20050215-1.txt
🔗 http://www.redhat.com/archives/fedora-announce-list/2005-February/msg00044.html

相关漏洞威胁

CVE-2006-374210.0

The KDE PAM configuration shipped with Fedora Core 5 causes KDM passwords to be cached, which allows attackers to login without a ...

CVE-2003-069010.0

KDM in KDE 3.1.3 and earlier does not verify whether the pam_setcred function call succeeds, which may allow attackers to gain roo...

CVE-2000-049110.0

Buffer overflow in the XDMCP parsing code of GNOME gdm, KDE kdm, and wdm allows remote attackers to execute arbitrary commands or ...

CVE-2004-11259.3

Buffer overflow in the Gfx::doImage function in Gfx.cc for xpdf 3.00, and other products that share code such as tetex-bin and kpd...