CVE Vulnerabilities

CVE-2005-0365

Published: May 02, 2005 | Modified: Oct 11, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
2.1 LOW
AV:L/AC:L/Au:N/C:N/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

The dcopidlng script in KDE 3.2.x and 3.3.x creates temporary files with predictable filenames, which allows local users to overwrite arbitrary files via a symlink attack.

Affected Software

Name Vendor Start Version End Version
Kde Kde 3.2.x 3.2.x
Kde Kde 3.3.x 3.3.x
Red Hat Enterprise Linux 4 RedHat kdelibs-6:3.3.1-3.6 *
Kdelibs Ubuntu dapper *
Kdelibs Ubuntu devel *
Kdelibs Ubuntu edgy *
Kdelibs Ubuntu feisty *

References