kdesu
by KDE
CVEs (3)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2016-7787 | Med | 0.32 | 4.9 | 0.02 | Dec 23, 2016 | A maliciously crafted command line for kdesu can result in the user only seeing part of the commands that will actually get executed as super user. | ||
| CVE-2000-0460 | 0.03 | — | 0.01 | May 27, 2000 | Buffer overflow in KDE kdesud on Linux allows local uses to gain privileges via a long DISPLAY environmental variable. | |||
| CVE-2001-0178 | 0.00 | — | 0.00 | Mar 26, 2001 | kdesu program in KDE2 (KDE before 2.2.0-6) does not properly verify the owner of a UNIX socket that is used to send a password, which allows local users to steal passwords and gain privileges. |
- risk 0.32cvss 4.9epss 0.02
A maliciously crafted command line for kdesu can result in the user only seeing part of the commands that will actually get executed as super user.
- CVE-2000-0460May 27, 2000risk 0.03cvss —epss 0.01
Buffer overflow in KDE kdesud on Linux allows local uses to gain privileges via a long DISPLAY environmental variable.
- CVE-2001-0178Mar 26, 2001risk 0.00cvss —epss 0.00
kdesu program in KDE2 (KDE before 2.2.0-6) does not properly verify the owner of a UNIX socket that is used to send a password, which allows local users to steal passwords and gain privileges.