CVE-2004-0690
KDE <= 3.2.3 - Unauthorized Access via Symlink Attack on DCOP Files
Title source: llmDescription
The DCOPServer in KDE 3.2.3 and earlier allows local users to gain unauthorized access via a symlink attack on DCOP files in the /tmp directory.
References (10)
Core 10
Core References
Vendor Advisory vendor-advisory
x_refsource_conectiva
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000864
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/16962
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/12276
Exploit, Patch, Vendor Advisory x_refsource_misc
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=261386
Vendor Advisory vendor-advisory
x_refsource_mandrake
http://www.mandriva.com/security/advisories?name=MDKSA-2004:086
Patch, Vendor Advisory x_refsource_confirm
http://www.kde.org/info/security/advisory-20040811-2.txt
US Government Resource third-party-advisory
x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/330638
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/10924
Third Party Advisory vendor-advisory
x_refsource_gentoo
http://security.gentoo.org/glsa/glsa-200408-13.xml
Mailing List mailing-list
x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=109225538901170&w=2
Scores
EPSS
0.0011
EPSS Percentile
29.6%
Details
Status
published
Products (1)
kde/kde
3.2.1
Published
Sep 28, 2004
Tracked Since
Feb 18, 2026