CVE-2002-1393 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2002-1393
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2002-1393

Description: Multiple vulnerabilities in KDE 2 and KDE 3.x through 3.0.5 do not quote certain parameters that are inserted into a shell command, which could allow remote attackers to execute arbitrary commands via (1) URLs, (2) filenames, or (3) e-mail addresses.

CVE Status: Candidate

References: SAID Secunia Advisory: SA8103 Secunia Advisory: SA8067 REDHAT http://www.redhat.com/support/errata/RHSA-2003-002.html http://www.redhat.com/support/errata/RHSA-2003-003.html MANDRAKE http://www.mandriva.com/security/advisories?name=MDKSA-2003:004 DEBIAN http://www.debian.org/security/2003/dsa-243 http://www.debian.org/security/2003/dsa-242 http://www.debian.org/security/2003/dsa-241 http://www.debian.org/security/2003/dsa-240 http://www.debian.org/security/2003/dsa-239 http://www.debian.org/security/2003/dsa-238 http://www.debian.org/security/2003/dsa-237 http://www.debian.org/security/2003/dsa-236 http://www.debian.org/security/2003/dsa-235 http://www.debian.org/security/2003/dsa-234 CONFIRM http://www.kde.org/info/security/advisory-20021220-1.txt CONECTIVA http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000569 BUGTRAQ http://marc.theaimsgroup.com/?l=bugtraq&m=104066520330397&w=2 http://marc.theaimsgroup.com/?l=bugtraq&m=104049734911544&w=2 BID 6462

Return to the previous page.