Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-1281

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2002-1281
Last Modified 05 Sep 2008 04:30:13
Published 29 Nov 2002 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-1281

Summary

Unknown vulnerability in the rlogin KIO subsystem (rlogin.protocol) of KDE 2.x 2.1 and later, and KDE 3.x 3.0.4 and earlier, allows local and remote attackers to execute arbitrary code via a certain URL.

Vulnerable Systems

Operating System

  • Kde 2.1

  • Kde 2.1.1

  • Kde 2.1.2

  • Kde 2.2

  • Kde 2.2.1

  • Kde 2.2.2

  • Kde 3.0

  • Kde 3.0.1

  • Kde 3.0.2

  • Kde 3.0.3

  • Kde 3.0.4


References

BID - 6182

REDHAT - RHSA-2002:220

CONFIRM - http://www.kde.org/info/security/advisory-20021111-1.txt

MANDRAKE - MDKSA-2002:079

XF - kde-rlogin-command-execution(10602)

DEBIAN - DSA-204

SECUNIA - 8298

BUGTRAQ - 20021114 GLSA: kdelibs

BUGTRAQ - 20021112 KDE Security Advisory: rlogin.protocol and telnet.protocol URL KIO Vulnerability

CALDERA - CSSA-2003-012.0


Last Updated: 27 May 2016 10:37:16