CVE-2005-0754
NONE EPSS 85.6%
Published Apr 22, 200521y ago · Modified Jun 16, 20262w ago
Published Apr 22, 2005 21y ago
Last Modified Jun 16, 2026 2w ago
Description
Kommander in KDE 3.2 through KDE 3.4.0 executes data files without confirmation from the user, which allows remote attackers to execute arbitrary code.
Threat Intelligence
EPSS Exploit Probability
85.6% percentile
Exploit & Patch Status
No Known Exploit
Patch Available
Affected Products 18
| Vendor | Product | Version | Range |
|---|---|---|---|
| kde | quanta | 3.1 | any |
| conectiva | linux | 9.0 | any |
| conectiva | linux | 10.0 | any |
| gentoo | linux | * | any |
| kde | kde | 3.2 | any |
| kde | kde | 3.2.1 | any |
| kde | kde | 3.2.2 | any |
| kde | kde | 3.2.3 | any |
| kde | kde | 3.3 | any |
| kde | kde | 3.3.1 | any |
| kde | kde | 3.3.2 | any |
| kde | kde | 3.4 | any |
| redhat | fedora_core | core_3.0 | any |
| ubuntu | ubuntu_linux | 4.1 | any |
| ubuntu | ubuntu_linux | 4.1 | any |
| ubuntu | ubuntu_linux | 5.04 | any |
| ubuntu | ubuntu_linux | 5.04 | any |
| ubuntu | ubuntu_linux | 5.04 | any |
References 5
- ftp.kde.org ftp://ftp.kde.org/pub/kde/security_patches/post-3.4.0-kdewebdev-kommander.diff
- marc.info http://marc.info/?l=bugtraq&m=111419664411051&w=2
- secunia.com http://secunia.com/advisories/15060
- kde.org http://www.kde.org/info/security/advisory-20050420-1.txt
- securityfocus.com http://www.securityfocus.com/bid/13313
Remediation
- secunia.com http://secunia.com/advisories/15060
- kde.org http://www.kde.org/info/security/advisory-20050420-1.txt
- securityfocus.com http://www.securityfocus.com/bid/13313