CVE-1999-1270
KMail in KDE 1.0 - Local Passphrase Exposure via Command Line Argument
Title source: llmDescription
KMail in KDE 1.0 provides a PGP passphrase as a command line argument to other programs, which could allow local users to obtain the passphrase and compromise the PGP keys of other users by viewing the arguments via programs that list process information, such as ps.
References (2)
Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/1639
Vendor Advisory x_refsource_misc
http://lists.kde.org/?l=kde-devel&m=90221974029738&w=2
Scores
EPSS
0.0006
EPSS Percentile
19.0%
Details
Status
published
Products (1)
kde/kde
1.0
Published
Jul 11, 1998
Tracked Since
Feb 18, 2026