5

CVE-2002-1224

Exploit
Directory traversal vulnerability in kpf for KDE 3.0.1 through KDE 3.0.3a allows remote attackers to read arbitrary files as the kpf user via a URL with a modified icon parameter.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
KdeKde Version3.0.1
KdeKde Version3.0.2
KdeKde Version3.0.3
KdeKde Version3.0.3a
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 8.84% 0.945
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:P/I:N/A:N
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://www.redhat.com/support/errata/RHSA-2002-220.html
http://archives.neohapsis.com/archives/bugtraq/2002-10/0164.html
Patch
Vendor Advisory
http://online.securityfocus.com/archive/1/294991
http://www.iss.net/security_center/static/10347.php
Vendor Advisory
http://www.kde.org/info/security/advisory-20021008-2.txt
Patch
Vendor Advisory
http://www.securityfocus.com/bid/5951
Patch
Vendor Advisory
Exploit