[email protected]CVE-2005-0396

HistoryMay 02, 2005 - 4:00 a.m.

CVE-2005-0396

2005-05-0204:00:00

[email protected]

web.nvd.nist.gov

cve-2005-0396

dcop

dcopserver

kde

denial of service

nvd

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

5.9 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

25.9%

JSON

Desktop Communication Protocol (DCOP) daemon, aka dcopserver, in KDE before 3.4 allows local users to cause a denial of service (dcopserver consumption) by “stalling the DCOP authentication process.”

Affected configurations

NVD

Node

kdedcopserverRange≤3.3

kdedesktop_communication_protocol_daemonRange≤3.3

CPENameOperatorVersion
kde:dcopserverkde dcopserverle3.3
kde:desktop_communication_protocol_daemonkde desktop communication protocol daemonle3.3

CPE	Name	Operator	Version
kde:dcopserver	kde dcopserver	le	3.3
kde:desktop_communication_protocol_daemon	kde desktop communication protocol daemon	le	3.3

References

marc.info/?l=bugtraq&m=111099766716483&w=2

security.gentoo.org/glsa/glsa-200503-22.xml

www.kde.org/info/security/advisory-20050316-1.txt

www.mandriva.com/security/advisories?name=MDKSA-2005:058

www.redhat.com/support/errata/RHSA-2005-307.html

www.redhat.com/support/errata/RHSA-2005-325.html

www.securityfocus.com/archive/1/427976/100/0/threaded

www.securityfocus.com/bid/12820

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10432

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

5.9 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

25.9%

JSON

Related for CVE-2005-0396

nvd1 freebsd1 nessus9 centos2 ubuntucve1 openvas6 cvelist1 redhat2 gentoo1 securityvulns2 suse1