CVE-2003-0204 | Vulnerability Database | Aqua Security

KDE 2 and KDE 3.1.1 and earlier 3.x versions allows attackers to execute arbitrary commands via (1) PostScript (PS) or (2) PDF files, related to missing -dPARANOIDSAFER and -dSAFER arguments when using the kghostview Ghostscript viewer.

Affected Software

Name	Vendor	Start Version	End Version
Kde	Kde	2.0	2.0
Kde	Kde	2.0.1	2.0.1
Kde	Kde	2.1	2.1
Kde	Kde	2.1.1	2.1.1
Kde	Kde	2.1.2	2.1.2
Kde	Kde	2.2	2.2
Kde	Kde	2.2.1	2.2.1
Kde	Kde	2.2.2	2.2.2
Kde	Kde	3.0	3.0
Kde	Kde	3.0.1	3.0.1
Kde	Kde	3.0.2	3.0.2
Kde	Kde	3.0.3	3.0.3
Kde	Kde	3.0.3a	3.0.3a
Kde	Kde	3.0.4	3.0.4
Kde	Kde	3.0.5	3.0.5
Kde	Kde	3.0.5a	3.0.5a
Kde	Kde	3.1	3.1
Kde	Kde	3.1.1	3.1.1

References

http://bugs.kde.org/show_bug.cgi?id=53343
http://bugs.kde.org/show_bug.cgi?id=56808
http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000668
http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000747
http://marc.info/?l=bugtraq\u0026m=105001557020141\u0026w=2
http://marc.info/?l=bugtraq\u0026m=105012994719099\u0026w=2
http://marc.info/?l=bugtraq\u0026m=105017403010459\u0026w=2
http://marc.info/?l=bugtraq\u0026m=105034222521369\u0026w=2
http://www.debian.org/security/2003/dsa-284
http://www.debian.org/security/2003/dsa-293
http://www.debian.org/security/2003/dsa-296
http://www.kde.org/info/security/advisory-20030409-1.txt
http://www.mandriva.com/security/advisories?name=MDKSA-2003:049
http://www.redhat.com/support/errata/RHSA-2003-002.html

NVD	https://nvd.nist.gov/vuln/detail/CVE-2003-0204
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html