CVE-2003-0988 | Vulnerability Database | Aqua Security

Buffer overflow in the VCF file information reader for KDE Personal Information Management (kdepim) suite in KDE 3.1.0 through 3.1.4 allows attackers to execute arbitrary code via a VCF file.

Affected Software

Name	Vendor	Start Version	End Version
Kde	Kde	3.1.0 (including)	3.1.0 (including)
Kde	Kde	3.1.1 (including)	3.1.1 (including)
Kde	Kde	3.1.2 (including)	3.1.2 (including)
Kde	Kde	3.1.3 (including)	3.1.3 (including)

References

http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000810
http://marc.info/?l=bugtraq\u0026m=107412130407906\u0026w=2
http://security.gentoo.org/glsa/glsa-200404-02.xml
http://www.kb.cert.org/vuls/id/820798
http://www.kde.org/info/security/advisory-20040114-1.txt
http://www.mandrakesoft.com/security/advisories?name=MDKSA-2004:003
http://www.redhat.com/support/errata/RHSA-2004-005.html
http://www.redhat.com/support/errata/RHSA-2004-006.html
http://www.securityfocus.com/bid/9419
https://exchange.xforce.ibmcloud.com/vulnerabilities/14833
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A858
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A865

NVD	https://nvd.nist.gov/vuln/detail/CVE-2003-0988
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html