Description
langen2kvtml in KDE 3.0 to 3.4.2 creates insecure temporary files in /tmp with predictable names, which allows local users to overwrite arbitrary files.
References (6)
Core 6
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/14561
Patch, Vendor Advisory x_refsource_confirm
http://www.kde.org/info/security/advisory-20050815-1.txt
Third Party Advisory vendor-advisory
x_refsource_debian
http://www.debian.org/security/2005/dsa-818
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/16428
Vendor Advisory vendor-advisory
x_refsource_mandrake
http://www.mandriva.com/security/advisories?name=MDKSA-2005:159
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1014675
Scores
EPSS
0.0065
EPSS Percentile
71.0%
Details
Status
published
Products (27)
kde/kde
3.0
kde/kde
3.0.1
kde/kde
3.0.2
kde/kde
3.0.3
kde/kde
3.0.4
kde/kde
3.0.5
kde/kde
3.0.5a
kde/kde
3.1
kde/kde
3.1.1
kde/kde
3.1.2
... and 17 more
Published
Aug 17, 2005
Tracked Since
Feb 18, 2026