CVE-2005-0011
KDE 3.3-3.3.2 - Remote Code Execution via fliccd Buffer Overflow
Title source: llmDescription
Multiple vulnerabilities in fliccd, when installed setuid root as part of the kdeedu Kstars support for Instrument Neutral Distributed Interface (INDI) in KDE 3.3 to 3.3.2, allow local users and remote attackers to execute arbitrary code via stack-based buffer overflows.
References (4)
Core 4
Core References
Vendor Advisory vendor-advisory
x_refsource_fedora
http://www.redhat.com/archives/fedora-announce-list/2005-February/msg00044.html
Patch, Vendor Advisory x_refsource_confirm
http://www.kde.org/info/security/advisory-20050215-1.txt
Vendor Advisory vendor-advisory
x_refsource_gentoo
http://www.gentoo.org/security/en/glsa/glsa-200502-23.xml
Patch third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/14306
Scores
EPSS
0.0491
EPSS Percentile
89.7%
Details
Status
published
Products (3)
kde/kde
3.3
kde/kde
3.3.1
kde/kde
3.3.2
Published
May 02, 2005
Tracked Since
Feb 18, 2026