rendering/render_replaced.cpp in Konqueror in KDE before 4.9.3 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted web page, related to "trying to reuse a frame with a null part."
CVSS Score
5.0
EPSS Score
0.073
Published
2012-11-11
The KDE screen saver in KDE before 3.0.5 does not properly check the return value from a certain function call, which allows attackers with physical access to cause a crash and access the desktop session.
CVSS Score
4.6
EPSS Score
0.001
Published
2005-05-02
KDE klock allows local users to kill arbitrary processes by specifying an arbitrary PID in the .kss.pid file.
CVSS Score
4.6
EPSS Score
0.001
Published
1998-11-18
KDE allows local users to execute arbitrary commands by setting the KDEDIR environmental variable to modify the search path that KDE uses to locate its executables.
CVSS Score
7.2
EPSS Score
0.001
Published
1998-11-18
KDE kppp allows local users to create a directory in an arbitrary location via the HOME environmental variable.
CVSS Score
2.1
EPSS Score
0.001
Published
1998-11-18
Buffer overflow in kppp in KDE allows local users to gain root access via a long PATH environmental variable.
CVSS Score
7.2
EPSS Score
0.001
Published
1998-11-18
KMail in KDE 1.0 provides a PGP passphrase as a command line argument to other programs, which could allow local users to obtain the passphrase and compromise the PGP keys of other users by viewing the arguments via programs that list process information, such as ps.
CVSS Score
4.6
EPSS Score
0.001
Published
1998-07-11
Buffer overflow in kscreensaver in KDE klock allows local users to gain root privileges via a long HOME environmental variable.
CVSS Score
7.2
EPSS Score
0.001
Published
1998-05-16