CVE-2003-0988

EPSS 7.32%
Published 17.02.2004 05:00:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

Buffer overflow in the VCF file information reader for KDE Personal Information Management (kdepim) suite in KDE 3.1.0 through 3.1.4 allows attackers to execute arbitrary code via a VCF file.

Affected products Warnungen 0 Metrics 2 CWE 0 References 15

Data is provided by the National Vulnerability Database (NVD)

Kde ≫ Kde Version3.1.0

Kde ≫ Kde Version3.1.1

Kde ≫ Kde Version3.1.2

Kde ≫ Kde Version3.1.3

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	7.32%	0.908

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000810

http://marc.info/?l=bugtraq&m=107412130407906&w=2

http://security.gentoo.org/glsa/glsa-200404-02.xml

http://www.kb.cert.org/vuls/id/820798

US Government Resource

http://www.kde.org/info/security/advisory-20040114-1.txt

Patch

Vendor Advisory

http://www.mandrakesoft.com/security/advisories?name=MDKSA-2004:003

http://www.redhat.com/support/errata/RHSA-2004-005.html

Patch

Vendor Advisory

http://www.redhat.com/support/errata/RHSA-2004-006.html

http://www.securityfocus.com/bid/9419

Patch

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/14833

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A858

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A865

https://nvd.nist.gov/vuln/detail/CVE-2003-0988

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2003-0988

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2003-0988

EUVD