Rapid7 Vulnerability & Exploit Database

SUSE Linux Security Vulnerability: CVE-2010-1000

Free InsightVM Trial No credit card necessary
Watch Demo See how it all works
Back to Search

SUSE Linux Security Vulnerability: CVE-2010-1000

Severity
6
CVSS
(AV:N/AC:M/Au:N/C:N/I:P/A:P)
Published
05/17/2010
Created
07/25/2018
Added
02/17/2015
Modified
07/04/2017

Description

Directory traversal vulnerability in KGet in KDE SC 4.0.0 through 4.4.3 allows remote attackers to create arbitrary files via directory traversal sequences in the name attribute of a file element in a metalink file.

Solution(s)

  • suse-upgrade-kde4-kdnssd
  • suse-upgrade-kde4-kget
  • suse-upgrade-kde4-knewsticker
  • suse-upgrade-kde4-kopete
  • suse-upgrade-kde4-kopete-devel
  • suse-upgrade-kde4-kppp
  • suse-upgrade-kde4-krdc
  • suse-upgrade-kde4-krfb
  • suse-upgrade-kdenetwork3
  • suse-upgrade-kdenetwork3-devel
  • suse-upgrade-kdenetwork3-dialup
  • suse-upgrade-kdenetwork3-instantmessenger
  • suse-upgrade-kdenetwork3-irc
  • suse-upgrade-kdenetwork3-lan
  • suse-upgrade-kdenetwork3-lisa
  • suse-upgrade-kdenetwork3-news
  • suse-upgrade-kdenetwork3-query
  • suse-upgrade-kdenetwork3-vnc
  • suse-upgrade-kdenetwork3-wireless
  • suse-upgrade-kdenetwork4
  • suse-upgrade-kdenetwork4-filesharing
  • suse-upgrade-kdnssd
  • suse-upgrade-kget
  • suse-upgrade-kopete
  • suse-upgrade-kopete-devel
  • suse-upgrade-kppp
  • suse-upgrade-krdc
  • suse-upgrade-krfb

References

insightVM

Advanced vulnerability management analytics and reporting.
Key Features
Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;