Vulnerabilities > CVE-2004-0690 - Unspecified vulnerability in KDE 3.2.1
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
The DCOPServer in KDE 3.2.3 and earlier allows local users to gain unauthorized access via a symlink attack on DCOP files in the /tmp directory.
Nessus
NASL family Slackware Local Security Checks NASL id SLACKWARE_SSA_2004-247-01.NASL description New kdelibs and kdebase packages are available for Slackware 9.1, 10.0, and -current to fix security issues. last seen 2020-06-01 modified 2020-06-02 plugin id 18782 published 2005-07-13 reporter This script is Copyright (C) 2005-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/18782 title Slackware 10.0 / 9.1 / current : kde (SSA:2004-247-01) NASL family FreeBSD Local Security Checks NASL id FREEBSD_PKG_603FE36DEC9D11D8B913000C41E2CDAD.NASL description According to a KDE Security Advisory, KDE may sometimes create temporary files without properly checking the ownership and type of the target path. This could allow a local attacker to cause KDE applications to overwrite arbitrary files. last seen 2020-06-01 modified 2020-06-02 plugin id 24307 published 2007-02-09 reporter This script is Copyright (C) 2007-2019 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/24307 title FreeBSD : kdelibs insecure temporary file handling (603fe36d-ec9d-11d8-b913-000c41e2cdad) NASL family Mandriva Local Security Checks NASL id MANDRAKE_MDKSA-2004-086.NASL description A number of vulnerabilities were discovered in KDE that are corrected with these update packages. The integrity of symlinks used by KDE are not ensured and as a result can be abused by local attackers to create or truncate arbitrary files or to prevent KDE applications from functioning correctly (CVE-2004-0689). The DCOPServer creates temporary files in an insecure manner. These temporary files are used for authentication-related purposes, so this could potentially allow a local attacker to compromise the account of any user running a KDE application (CVE-2004-0690). Note that only KDE 3.2.x is affected by this vulnerability. The Konqueror web browser allows websites to load web pages into a frame of any other frame-based web page that the user may have open. This could potentially allow a malicious website to make Konqueror insert its own frames into the page of an otherwise trusted website (CVE-2004-0721). The Konqueror web browser also allows websites to set cookies for certain country-specific top-level domains. This can be done to make Konqueror send the cookies to all other web sites operating under the same domain, which can be abused to become part of a session fixation attack. All country-specific secondary top-level domains that use more than 2 characters in the secondary part of the domain name, and that use a secondary part other than com, net, mil, org, gove, edu, or int are affected (CVE-2004-0746). last seen 2020-06-01 modified 2020-06-02 plugin id 14335 published 2004-08-22 reporter This script is Copyright (C) 2004-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/14335 title Mandrake Linux Security Advisory : kdelibs/kdebase (MDKSA-2004:086)
References
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=261386
- http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000864
- http://marc.info/?l=bugtraq&m=109225538901170&w=2
- http://secunia.com/advisories/12276
- http://security.gentoo.org/glsa/glsa-200408-13.xml
- http://www.kb.cert.org/vuls/id/330638
- http://www.kde.org/info/security/advisory-20040811-2.txt
- http://www.mandriva.com/security/advisories?name=MDKSA-2004:086
- http://www.securityfocus.com/bid/10924
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16962