Multiple buffer overflows in LISa on KDE 2.x for 2.1 and later, and KDE 3.x before 3.0.4, allow (1) local and possibly remote attackers to execute arbitrary code via the “lisa” daemon, and (2) remote attackers to execute arbitrary code via a certain “lan://” URL.
marc.info/?l=bugtraq&m=103712329102632&w=2
marc.info/?l=bugtraq&m=103728981029342&w=2
www.ciac.org/ciac/bulletins/n-020.shtml
www.debian.org/security/2002/dsa-214
www.iss.net/security_center/static/10597.php
www.iss.net/security_center/static/10598.php
www.kde.org/info/security/advisory-20021111-2.txt
www.linux-mandrake.com/en/security/2002/MDKSA-2002-080.php
www.novell.com/linux/security/advisories/2002_042_kdenetwork.html
www.redhat.com/support/errata/RHSA-2002-220.html