‘KDE KGet Insecure File Operation Vulnerability’

Published on June 23rd, 2010
Summary

A vulnerability was discovered in KDE, which can be exploited by malicious people to bypass certain security features.’

Credit:

‘The information has been provided by Stefan Cornelius.
The original article can be found at: http://secunia.com/secunia_research/2010-70/


Details

Vulnerable Systems:
 * KDE 4.4.2 (KGet 2.4.2)

The vulnerability is caused by KGet downloading files without the user’s acknowledgment, overwriting existing files of the same name when displaying a dialog box that allows a user to choose the file to download out of the options offered by a metalink file.

Patch Availability:
Apply patches for the 4.3 and 4.4 branches committed to the KDE Subversion repository.

CVE Information:
CVE-2010-1511

Disclosure Timeline:
30/04/2010 – Vendor notified
02/05/2010 – Vendor response
13/05/2010 – Public disclosure’

Categories: UNIX
Tags:

Related Posts

UNIX

‘ProFTPD Response Pool Use-After-Free Code Execution Vulnerability’

'This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of the ProFTPd server.'

UNIX

‘Insight Control for Linux Multiple Vulnerabilities’

'Remote unauthorized elevation of privilege, execution of arbitrary code, encryption downgrade, information disclosure and Denial of Service (DoS) vulnerabilities were identified in Insight Control for Linux.'

UNIX

‘HP-UX Running NFS/ONCplus Denial of Service Vulnerability’

'A potential security vulnerability has been identified with NFS/ONCplus running on HP-UX.'