Format String Vulnerability in KDE kvt by The KDE Project
CVE-2000-0918

Currently unrated

Key Information:

Vendor: Kde
Status: Kvt
Vendor: CVE Published:; 19 December 2000

What is CVE-2000-0918?

A format string vulnerability exists in the kvt component of KDE 1.1.2 that permits local users to potentially execute arbitrary commands. This can occur when a specific DISPLAY environmental variable that contains formatting characters is manipulated. Users should be aware of this risk, as it can lead to unauthorized command execution if exploited. Ensuring prompt updates and employing secure coding practices can mitigate such vulnerabilities.

References

http://www.securityfocus.com/archive/1/83914

mailing-listx_refsource_BUGTRAQ

http://www.securityfocus.com/bid/1700

vdb-entryx_refsource_BID

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 19, 2000
Vulnerability Reserved
Nov 24, 2000

CVE-2000-0918 Data

JSON

Kde

What is CVE-2000-0918?

References

Timeline