VYPR
Unrated severityNVD Advisory· Published Sep 16, 2013· Updated Jun 16, 2026

CVE-2013-4132

CVE-2013-4132

Description

KDE-Workspace 4.10.5 and earlier does not properly handle the return value of the glibc 2.17 crypt and pw_encrypt functions, which allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via (1) an invalid salt or a (2) DES or (3) MD5 encrypted password, when FIPS-140 is enable, to KDM or an (4) invalid password to KCheckPass.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4
  • cpe:2.3:a:kde:kde_sc:*:*:*:*:*:*:*:*
    Range: <=4.10.5
  • KDE/Kde Workspace2 versions
    cpe:2.3:a:kde:kde-workspace:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:kde:kde-workspace:*:*:*:*:*:*:*:*range: <=4.10.5
    • (no CPE)range: <=4.10.5
  • cpe:2.3:o:opensuse:opensuse:12.2:*:*:*:*:*:*:*

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.