CVE-2003-0988

EPSS 7.32%
Veröffentlicht 17.02.2004 05:00:00
Zuletzt bearbeitet 03.04.2025 01:03:51
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

Buffer overflow in the VCF file information reader for KDE Personal Information Management (kdepim) suite in KDE 3.1.0 through 3.1.4 allows attackers to execute arbitrary code via a VCF file.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 15

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Kde ≫ Kde Version3.1.0

Kde ≫ Kde Version3.1.1

Kde ≫ Kde Version3.1.2

Kde ≫ Kde Version3.1.3

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	7.32%	0.908

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000810

http://marc.info/?l=bugtraq&m=107412130407906&w=2

http://security.gentoo.org/glsa/glsa-200404-02.xml

http://www.kb.cert.org/vuls/id/820798

US Government Resource

http://www.kde.org/info/security/advisory-20040114-1.txt

Patch

Vendor Advisory

http://www.mandrakesoft.com/security/advisories?name=MDKSA-2004:003

http://www.redhat.com/support/errata/RHSA-2004-005.html

Patch

Vendor Advisory

http://www.redhat.com/support/errata/RHSA-2004-006.html

http://www.securityfocus.com/bid/9419

Patch

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/14833

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A858

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A865

https://nvd.nist.gov/vuln/detail/CVE-2003-0988

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2003-0988

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2003-0988

EUVD