CVE-2005-1920
HIGHKDE 3.2.x-3.4.0 - Improper Preservation of Permissions in Kate and Kwrite Backup Files
Title source: llmDescription
The (1) Kate and (2) Kwrite applications in KDE KDE 3.2.x through 3.4.0 do not properly set the same permissions on the backup file as were set on the original file, which could allow local users and possibly remote attackers to obtain sensitive information.
References (12)
Core 12
Core References
Broken Link vendor-advisory
x_refsource_suse
http://www.novell.com/linux/security/advisories/2005_18_sr.html
Broken Link, Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/14297
Broken Link vdb-entry
signature
x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9434
Third Party Advisory vendor-advisory
x_refsource_debian
http://www.debian.org/security/2005/dsa-804
Broken Link, Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1014512
Broken Link, Third Party Advisory, VDB Entry vendor-advisory
x_refsource_fedora
http://www.securityfocus.com/archive/1/427976/100/0/threaded
Mailing List mailing-list
x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=112171434023679&w=2
Patch, Vendor Advisory x_refsource_confirm
http://www.kde.org/info/security/advisory-20050718-1.txt
Third Party Advisory vendor-advisory
x_refsource_gentoo
http://security.gentoo.org/glsa/glsa-200611-21.xml
Broken Link third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/16099
Broken Link third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/23099
Broken Link vendor-advisory
x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2005-612.html
Scores
CVSS v3
7.5
EPSS
0.0282
EPSS Percentile
86.3%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Details
CWE
CWE-281
Status
published
Products (2)
debian/debian_linux
3.1
kde/kde
3.2 - 3.4.0
Published
Jul 26, 2005
Tracked Since
Feb 18, 2026