Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0689

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-2004-0689
Last Modified 21 Aug 2010 12:21:05
Published 28 Sep 2004 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2004-0689

Summary

KDE before 3.3.0 does not properly handle when certain symbolic links point to "stale" locations, which could allow local users to create or truncate arbitrary files.

Vulnerable Systems

Operating System

  • Kde 3.3.0


References

XF - kde-application-symlink(16963)

CONFIRM - http://www.kde.org/info/security/advisory-20040811-1.txt

DEBIAN - DSA-539

GENTOO - 200408-13

SECUNIA - 12276

BUGTRAQ - 20040811 KDE Security Advisories: Temporary File and Konqueror Frame Injection Vulnerabilities

CONECTIVA - CLA-2004:864


Last Updated: 27 May 2016 10:38:43