CVE-2002-1306

Multiple buffer overflows in LISa on KDE 2.x for 2.1 and later, and KDE 3.x before 3.0.4, allow (1) local and possibly remote attackers to execute arbitrary code via the lisa daemon, and (2) remote attackers to execute arbitrary code via a certain lan:// URL.

Affected Software

References

• http://marc.info/?l=bugtraq\u0026m=103712329102632\u0026w=2
• http://marc.info/?l=bugtraq\u0026m=103728981029342\u0026w=2
• http://www.ciac.org/ciac/bulletins/n-020.shtml
• http://www.debian.org/security/2002/dsa-214
• http://www.iss.net/security_center/static/10597.php
• http://www.iss.net/security_center/static/10598.php
• http://www.kde.org/info/security/advisory-20021111-2.txt
• http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-080.php
• http://www.novell.com/linux/security/advisories/2002_042_kdenetwork.html
• http://www.redhat.com/support/errata/RHSA-2002-220.html
• http://marc.info/?l=bugtraq\u0026m=103712329102632\u0026w=2
• http://marc.info/?l=bugtraq\u0026m=103728981029342\u0026w=2
• http://www.ciac.org/ciac/bulletins/n-020.shtml
• http://www.debian.org/security/2002/dsa-214
• http://www.iss.net/security_center/static/10597.php
• http://www.iss.net/security_center/static/10598.php
• http://www.kde.org/info/security/advisory-20021111-2.txt
• http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-080.php
• http://www.novell.com/linux/security/advisories/2002_042_kdenetwork.html
• http://www.redhat.com/support/errata/RHSA-2002-220.html