CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
Confidence
Low
EPSS
Percentile
89.0%
Kommander in KDE 3.2 through KDE 3.4.0 executes data files without confirmation from the user, which allows remote attackers to execute arbitrary code.
Vendor | Product | Version | CPE |
---|---|---|---|
kde | quanta | 3.1 | cpe:2.3:a:kde:quanta:3.1:*:*:*:*:*:*:* |
conectiva | linux | 9.0 | cpe:2.3:o:conectiva:linux:9.0:*:*:*:*:*:*:* |
conectiva | linux | 10.0 | cpe:2.3:o:conectiva:linux:10.0:*:*:*:*:*:*:* |
gentoo | linux | * | cpe:2.3:o:gentoo:linux:*:*:*:*:*:*:*:* |
kde | kde | 3.2 | cpe:2.3:o:kde:kde:3.2:*:*:*:*:*:*:* |
kde | kde | 3.2.1 | cpe:2.3:o:kde:kde:3.2.1:*:*:*:*:*:*:* |
kde | kde | 3.2.2 | cpe:2.3:o:kde:kde:3.2.2:*:*:*:*:*:*:* |
kde | kde | 3.2.3 | cpe:2.3:o:kde:kde:3.2.3:*:*:*:*:*:*:* |
kde | kde | 3.3 | cpe:2.3:o:kde:kde:3.3:*:*:*:*:*:*:* |
kde | kde | 3.3.1 | cpe:2.3:o:kde:kde:3.3.1:*:*:*:*:*:*:* |