CVE-2002-1224
KDE 3.0.1-3.0.3a - Directory Traversal via kpf Icon Parameter
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2002-1224. PoCs published by Ajay R Ramjatan.
AI-analyzed exploit summary The vulnerability in kpf file sharing utility allows directory traversal via a malicious file request, enabling remote attackers to access files outside the shared directory root. The exploit leverages a URL request to bypass directory restrictions.
Description
Directory traversal vulnerability in kpf for KDE 3.0.1 through KDE 3.0.3a allows remote attackers to read arbitrary files as the kpf user via a URL with a modified icon parameter.
Exploits (1)
The vulnerability in kpf file sharing utility allows directory traversal via a malicious file request, enabling remote attackers to access files outside the shared directory root. The exploit leverages a URL request to bypass directory restrictions.