CVE-2005-0205 | Vulnerability Database | Aqua Security

KPPP 2.1.2 in KDE 3.1.5 and earlier, when setuid root without certain wrappers, does not properly close a privileged file descriptor for a domain socket, which allows local users to read and write to /etc/hosts and /etc/resolv.conf and gain control over DNS name resolution by opening a number of file descriptors before executing kppp.

Affected Software

Name	Vendor	Start Version	End Version
Kppp	Bernd_wuebben	2.1.2 (including)	2.1.2 (including)
Kde	Kde	3.1 (including)	3.1 (including)
Kde	Kde	3.1.1 (including)	3.1.1 (including)
Kde	Kde	3.1.2 (including)	3.1.2 (including)
Kde	Kde	3.1.3 (including)	3.1.3 (including)
Kde	Kde	3.1.4 (including)	3.1.4 (including)
Kde	Kde	3.1.5 (including)	3.1.5 (including)
Red Hat Enterprise Linux 3	RedHat	kdenetwork-7:3.1.3-1.8	*

References

http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000934
http://www.debian.org/security/2005/dsa-692
http://www.idefense.com/application/poi/display?id=208\u0026type=vulnerabilities
http://www.kde.org/info/security/advisory-20050228-1.txt
http://www.redhat.com/support/errata/RHSA-2005-175.html
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9596
http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000934
http://www.debian.org/security/2005/dsa-692
http://www.idefense.com/application/poi/display?id=208\u0026type=vulnerabilities
http://www.kde.org/info/security/advisory-20050228-1.txt
http://www.redhat.com/support/errata/RHSA-2005-175.html
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9596

NVD	https://nvd.nist.gov/vuln/detail/CVE-2005-0205
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html