CVE-2010-1511 (GCVE-0-2010-1511)

Vulnerability from cvelistv5 – Published: 2010-05-17 20:42 – Updated: 2024-08-07 01:28
VLAI?
Summary
KGet 2.4.2 in KDE SC 4.0.0 through 4.4.3 does not properly request download confirmation from the user, which makes it easier for remote attackers to overwrite arbitrary files via a crafted metalink file.
Severity ?
No CVSS data available.
CWE
  • n/a
Assigner
References
http://www.securityfocus.com/bid/40141 vdb-entryx_refsource_BID
http://www.ubuntu.com/usn/USN-938-1 vendor-advisoryx_refsource_UBUNTU
http://www.securityfocus.com/archive/1/511279/100… mailing-listx_refsource_BUGTRAQ
http://www.securityfocus.com/archive/1/511294/100… mailing-listx_refsource_BUGTRAQ
http://www.vupen.com/english/advisories/2010/1144 vdb-entryx_refsource_VUPEN
http://secunia.com/secunia_research/2010-70/ x_refsource_MISC
https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
http://www.kde.org/info/security/advisory-2010051… x_refsource_CONFIRM
http://www.vupen.com/english/advisories/2010/3096 vdb-entryx_refsource_VUPEN
http://lists.fedoraproject.org/pipermail/package-… vendor-advisoryx_refsource_FEDORA
http://marc.info/?l=oss-security&m=127378789518426&w=2 mailing-listx_refsource_MLIST
http://secunia.com/advisories/39528 third-party-advisoryx_refsource_SECUNIA
http://www.vupen.com/english/advisories/2010/1142 vdb-entryx_refsource_VUPEN
http://securitytracker.com/id?1023984 vdb-entryx_refsource_SECTRACK
http://osvdb.org/64689 vdb-entryx_refsource_OSVDB
http://secunia.com/advisories/39787 third-party-advisoryx_refsource_SECUNIA
Show details on NVD website
To clipboard 

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T01:28:41.483Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "40141",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/40141"
          },
          {
            "name": "USN-938-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "http://www.ubuntu.com/usn/USN-938-1"
          },
          {
            "name": "20100513 Secunia Research: KDE KGet Insecure File Operation Vulnerability",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/archive/1/511279/100/0/threaded"
          },
          {
            "name": "20100514 Re: Secunia Research: KDE KGet Insecure File Operation Vulnerability",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/archive/1/511294/100/0/threaded"
          },
          {
            "name": "ADV-2010-1144",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2010/1144"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://secunia.com/secunia_research/2010-70/"
          },
          {
            "name": "kde-metalink-file-overwrite(58629)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/58629"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.kde.org/info/security/advisory-20100513-1.txt"
          },
          {
            "name": "ADV-2010-3096",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2010/3096"
          },
          {
            "name": "FEDORA-2010-18029",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051692.html"
          },
          {
            "name": "[oss-security] 20100513 KDENetwork vulnerabilities",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://marc.info/?l=oss-security\u0026m=127378789518426\u0026w=2"
          },
          {
            "name": "39528",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/39528"
          },
          {
            "name": "ADV-2010-1142",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2010/1142"
          },
          {
            "name": "1023984",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://securitytracker.com/id?1023984"
          },
          {
            "name": "64689",
            "tags": [
              "vdb-entry",
              "x_refsource_OSVDB",
              "x_transferred"
            ],
            "url": "http://osvdb.org/64689"
          },
          {
            "name": "39787",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/39787"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2010-05-13T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "KGet 2.4.2 in KDE SC 4.0.0 through 4.4.3 does not properly request download confirmation from the user, which makes it easier for remote attackers to overwrite arbitrary files via a crafted metalink file."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-10-10T18:57:01",
        "orgId": "44d08088-2bea-4760-83a6-1e9be26b15ab",
        "shortName": "flexera"
      },
      "references": [
        {
          "name": "40141",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/40141"
        },
        {
          "name": "USN-938-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "http://www.ubuntu.com/usn/USN-938-1"
        },
        {
          "name": "20100513 Secunia Research: KDE KGet Insecure File Operation Vulnerability",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://www.securityfocus.com/archive/1/511279/100/0/threaded"
        },
        {
          "name": "20100514 Re: Secunia Research: KDE KGet Insecure File Operation Vulnerability",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://www.securityfocus.com/archive/1/511294/100/0/threaded"
        },
        {
          "name": "ADV-2010-1144",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2010/1144"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://secunia.com/secunia_research/2010-70/"
        },
        {
          "name": "kde-metalink-file-overwrite(58629)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/58629"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.kde.org/info/security/advisory-20100513-1.txt"
        },
        {
          "name": "ADV-2010-3096",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2010/3096"
        },
        {
          "name": "FEDORA-2010-18029",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051692.html"
        },
        {
          "name": "[oss-security] 20100513 KDENetwork vulnerabilities",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://marc.info/?l=oss-security\u0026m=127378789518426\u0026w=2"
        },
        {
          "name": "39528",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/39528"
        },
        {
          "name": "ADV-2010-1142",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2010/1142"
        },
        {
          "name": "1023984",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://securitytracker.com/id?1023984"
        },
        {
          "name": "64689",
          "tags": [
            "vdb-entry",
            "x_refsource_OSVDB"
          ],
          "url": "http://osvdb.org/64689"
        },
        {
          "name": "39787",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/39787"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "PSIRT-CNA@flexerasoftware.com",
          "ID": "CVE-2010-1511",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "KGet 2.4.2 in KDE SC 4.0.0 through 4.4.3 does not properly request download confirmation from the user, which makes it easier for remote attackers to overwrite arbitrary files via a crafted metalink file."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "40141",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/40141"
            },
            {
              "name": "USN-938-1",
              "refsource": "UBUNTU",
              "url": "http://www.ubuntu.com/usn/USN-938-1"
            },
            {
              "name": "20100513 Secunia Research: KDE KGet Insecure File Operation Vulnerability",
              "refsource": "BUGTRAQ",
              "url": "http://www.securityfocus.com/archive/1/511279/100/0/threaded"
            },
            {
              "name": "20100514 Re: Secunia Research: KDE KGet Insecure File Operation Vulnerability",
              "refsource": "BUGTRAQ",
              "url": "http://www.securityfocus.com/archive/1/511294/100/0/threaded"
            },
            {
              "name": "ADV-2010-1144",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2010/1144"
            },
            {
              "name": "http://secunia.com/secunia_research/2010-70/",
              "refsource": "MISC",
              "url": "http://secunia.com/secunia_research/2010-70/"
            },
            {
              "name": "kde-metalink-file-overwrite(58629)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/58629"
            },
            {
              "name": "http://www.kde.org/info/security/advisory-20100513-1.txt",
              "refsource": "CONFIRM",
              "url": "http://www.kde.org/info/security/advisory-20100513-1.txt"
            },
            {
              "name": "ADV-2010-3096",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2010/3096"
            },
            {
              "name": "FEDORA-2010-18029",
              "refsource": "FEDORA",
              "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051692.html"
            },
            {
              "name": "[oss-security] 20100513 KDENetwork vulnerabilities",
              "refsource": "MLIST",
              "url": "http://marc.info/?l=oss-security\u0026m=127378789518426\u0026w=2"
            },
            {
              "name": "39528",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/39528"
            },
            {
              "name": "ADV-2010-1142",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2010/1142"
            },
            {
              "name": "1023984",
              "refsource": "SECTRACK",
              "url": "http://securitytracker.com/id?1023984"
            },
            {
              "name": "64689",
              "refsource": "OSVDB",
              "url": "http://osvdb.org/64689"
            },
            {
              "name": "39787",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/39787"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "44d08088-2bea-4760-83a6-1e9be26b15ab",
    "assignerShortName": "flexera",
    "cveId": "CVE-2010-1511",
    "datePublished": "2010-05-17T20:42:00",
    "dateReserved": "2010-04-26T00:00:00",
    "dateUpdated": "2024-08-07T01:28:41.483Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kget:2.4.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6199E818-1535-4EC2-94BA-40D4FCE9D545\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kde_sc:2.2.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"501B4E7A-CA9A-42CD-B6A7-77EFD66A52A1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kde_sc:3.5.10:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D5052839-1F42-4816-95C9-FB33DAA29701\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kde_sc:4.0.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DBA5ADAB-9FBC-4785-A47E-B40D73A56853\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kde_sc:4.0.0:alpha1:*:*:*:*:*:*\", \"matchCriteriaId\": \"678A4353-ED2E-44CC-8A20-C215D0F82DAC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kde_sc:4.0.0:alpha2:*:*:*:*:*:*\", \"matchCriteriaId\": \"17C8F0A4-1679-410E-B445-9AF26705318C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kde_sc:4.0.0:beta1:*:*:*:*:*:*\", \"matchCriteriaId\": \"A639B21F-5CD6-4F64-855B-A832EBE877E5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kde_sc:4.0.0:beta2:*:*:*:*:*:*\", \"matchCriteriaId\": \"08475868-59F9-4D17-8322-7827A08EBCCF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kde_sc:4.0.0:beta3:*:*:*:*:*:*\", \"matchCriteriaId\": \"B99AD5C2-707D-40A7-A36D-C132952FFAF2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kde_sc:4.0.0:beta4:*:*:*:*:*:*\", \"matchCriteriaId\": \"A0B385A1-6728-4FBF-92E6-57F31DC47FEE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kde_sc:4.0.0:rc1:*:*:*:*:*:*\", \"matchCriteriaId\": \"2946F3D1-4AA4-4B45-B3CE-0E4FD9241735\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kde_sc:4.0.0:rc2:*:*:*:*:*:*\", \"matchCriteriaId\": \"3C285D1B-7BF8-4975-BBA4-1D6862B29EC3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kde_sc:4.0.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F93D6A0C-E87C-413F-A27D-039765CBCEC4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kde_sc:4.0.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C29EA2DC-C308-45AE-96EB-5979BFDC9DBB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kde_sc:4.0.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B6FBA168-EBB4-487E-8FB4-2B3EE17A4FAB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kde_sc:4.0.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AFDB85F6-C71C-4EE9-8C75-9BAFB7C8C243\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kde_sc:4.0.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7B14A2BB-CE7E-4D24-8EB1-B25432BC95AC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kde_sc:4.1.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3DB880E4-9E8D-4A55-8829-2E6C08502F91\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kde_sc:4.1.0:alpha1:*:*:*:*:*:*\", \"matchCriteriaId\": \"C88B3F03-59CD-435B-A58B-C6C09A6063A6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kde_sc:4.1.0:beta1:*:*:*:*:*:*\", \"matchCriteriaId\": \"49E37E6A-2773-49D9-8503-1D6B2A42F2FA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kde_sc:4.1.0:beta2:*:*:*:*:*:*\", \"matchCriteriaId\": \"DC47CA15-8868-4CC5-8C12-68429BF88A0E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kde_sc:4.1.0:rc:*:*:*:*:*:*\", \"matchCriteriaId\": \"7A9EE07F-DA83-4DEC-BE81-3C597BED273C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kde_sc:4.1.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F33CFD9E-D0D9-4A9B-8A48-AAEF96F43C9D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kde_sc:4.1.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D70FA8B9-9F99-4524-961C-2EE8C0AA864F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kde_sc:4.1.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BFF32A58-4E0B-41AF-9129-352A0322E922\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kde_sc:4.1.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1888CC58-3F5C-407B-BF2E-E7899C1B7828\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kde_sc:4.1.80:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"105CAB1E-D97D-4217-8801-C098C69006B7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kde_sc:4.1.85:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F17A6896-7425-4582-92E2-B357181A2C64\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kde_sc:4.1.96:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E28F1A08-C678-493D-A9CB-84AC70A69423\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kde_sc:4.2:beta2:*:*:*:*:*:*\", \"matchCriteriaId\": \"BBAA496B-834F-4322-8081-08A4B042A9F4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kde_sc:4.2:rc:*:*:*:*:*:*\", \"matchCriteriaId\": \"84E66D2A-F6DF-41E3-BFBC-C3E5A54616E8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kde_sc:4.2.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8807A9BE-2ECE-4A14-BCD7-59036C46C826\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kde_sc:4.2.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8C1FFCDE-F569-47D3-9E0D-94096EE0E16D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kde_sc:4.2.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"692D0AC5-E946-4D6D-999E-44C66FAEB5CF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kde_sc:4.2.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6DB038BD-B89D-4C9F-8AEB-B65F62ECAC8B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kde_sc:4.2.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9594B2F9-6B74-4CA8-A43B-EAE4B19293C5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kde_sc:4.3.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"32EB3F1E-9745-4D31-AC8B-B85418A9215E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kde_sc:4.3.0:beta1:*:*:*:*:*:*\", \"matchCriteriaId\": \"BECE4B3A-E481-4CE0-B5CE-9842DB47C8D3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kde_sc:4.3.0:beta3:*:*:*:*:*:*\", \"matchCriteriaId\": \"0740C404-69A7-45AD-AD99-4B8AD09FD09B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kde_sc:4.3.0:rc1:*:*:*:*:*:*\", \"matchCriteriaId\": \"3242128C-7653-4E6C-A72D-62D033632154\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kde_sc:4.3.0:rc2:*:*:*:*:*:*\", \"matchCriteriaId\": \"8EFDC84F-F851-4D28-AE64-9ED99389023C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kde_sc:4.3.0:rc3:*:*:*:*:*:*\", \"matchCriteriaId\": \"80B35884-311B-4FAF-AC8D-5F886A86CAFB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kde_sc:4.3.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"096EA629-5CA5-42B6-B6BF-9B401623D411\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kde_sc:4.3.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B411BAA5-A57C-43D7-B99D-BBF90AAA0867\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kde_sc:4.3.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"939121D6-2E82-4E9C-8D2E-753A48A2DBAC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kde_sc:4.3.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6B67C346-02AA-4719-BFD1-D6D5357B2C74\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kde_sc:4.3.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8FD07C23-B63D-43A1-9930-B04938CE2A88\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kde_sc:4.4.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A0D84A35-4355-4BBB-BC67-A455EDC8A213\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kde_sc:4.4.0:beta1:*:*:*:*:*:*\", \"matchCriteriaId\": \"DDC30651-790E-48C9-B979-5948B72B92CA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kde_sc:4.4.0:beta2:*:*:*:*:*:*\", \"matchCriteriaId\": \"3C0B5127-B5F9-490D-90E6-79963555472B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kde_sc:4.4.0:rc1:*:*:*:*:*:*\", \"matchCriteriaId\": \"CE030856-57FE-4FA0-BE88-5D038C24E927\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kde_sc:4.4.0:rc2:*:*:*:*:*:*\", \"matchCriteriaId\": \"FB2B3EC5-713F-4996-8532-DBCEE7D32481\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kde_sc:4.4.0:rc3:*:*:*:*:*:*\", \"matchCriteriaId\": \"CACB3D53-D2B4-4105-816A-3B286C57B229\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kde_sc:4.4.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"376563D6-9847-4596-8E7F-A1B4E4437DA9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kde_sc:4.4.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CF01B401-CDAF-4853-B582-EC13A352A4B2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kde:kde_sc:4.4.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"59FFB800-D27D-4B7F-A895-C757B18B3201\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"KGet 2.4.2 in KDE SC 4.0.0 through 4.4.3 does not properly request download confirmation from the user, which makes it easier for remote attackers to overwrite arbitrary files via a crafted metalink file.\"}, {\"lang\": \"es\", \"value\": \"KGet v2.4.2 en KDE SC v4.0.0 hasta v4.4.3 no solicita de forma adecuada la confirmaci\\u00f3n de descarga por parte del usuario, lo que facilita a atacantes remotos sobrescribir ficheros de su elecci\\u00f3n a trav\\u00e9s un fichero metalik manipulado.\"}]",
      "id": "CVE-2010-1511",
      "lastModified": "2024-11-21T01:14:36.060",
      "metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:N/C:N/I:P/A:P\", \"baseScore\": 6.4, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"PARTIAL\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 10.0, \"impactScore\": 4.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2010-05-17T21:00:01.327",
      "references": "[{\"url\": \"http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051692.html\", \"source\": \"PSIRT-CNA@flexerasoftware.com\"}, {\"url\": \"http://marc.info/?l=oss-security\u0026m=127378789518426\u0026w=2\", \"source\": \"PSIRT-CNA@flexerasoftware.com\"}, {\"url\": \"http://osvdb.org/64689\", \"source\": \"PSIRT-CNA@flexerasoftware.com\"}, {\"url\": \"http://secunia.com/advisories/39528\", \"source\": \"PSIRT-CNA@flexerasoftware.com\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://secunia.com/advisories/39787\", \"source\": \"PSIRT-CNA@flexerasoftware.com\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://secunia.com/secunia_research/2010-70/\", \"source\": \"PSIRT-CNA@flexerasoftware.com\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://securitytracker.com/id?1023984\", \"source\": \"PSIRT-CNA@flexerasoftware.com\"}, {\"url\": \"http://www.kde.org/info/security/advisory-20100513-1.txt\", \"source\": \"PSIRT-CNA@flexerasoftware.com\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://www.securityfocus.com/archive/1/511279/100/0/threaded\", \"source\": \"PSIRT-CNA@flexerasoftware.com\"}, {\"url\": \"http://www.securityfocus.com/archive/1/511294/100/0/threaded\", \"source\": \"PSIRT-CNA@flexerasoftware.com\"}, {\"url\": \"http://www.securityfocus.com/bid/40141\", \"source\": \"PSIRT-CNA@flexerasoftware.com\"}, {\"url\": \"http://www.ubuntu.com/usn/USN-938-1\", \"source\": \"PSIRT-CNA@flexerasoftware.com\"}, {\"url\": \"http://www.vupen.com/english/advisories/2010/1142\", \"source\": \"PSIRT-CNA@flexerasoftware.com\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://www.vupen.com/english/advisories/2010/1144\", \"source\": \"PSIRT-CNA@flexerasoftware.com\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://www.vupen.com/english/advisories/2010/3096\", \"source\": \"PSIRT-CNA@flexerasoftware.com\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/58629\", \"source\": \"PSIRT-CNA@flexerasoftware.com\"}, {\"url\": \"http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051692.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://marc.info/?l=oss-security\u0026m=127378789518426\u0026w=2\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://osvdb.org/64689\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/39528\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://secunia.com/advisories/39787\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://secunia.com/secunia_research/2010-70/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://securitytracker.com/id?1023984\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.kde.org/info/security/advisory-20100513-1.txt\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://www.securityfocus.com/archive/1/511279/100/0/threaded\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/archive/1/511294/100/0/threaded\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/bid/40141\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.ubuntu.com/usn/USN-938-1\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.vupen.com/english/advisories/2010/1142\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://www.vupen.com/english/advisories/2010/1144\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://www.vupen.com/english/advisories/2010/3096\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/58629\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
      "sourceIdentifier": "PSIRT-CNA@flexerasoftware.com",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-264\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2010-1511\",\"sourceIdentifier\":\"PSIRT-CNA@flexerasoftware.com\",\"published\":\"2010-05-17T21:00:01.327\",\"lastModified\":\"2025-04-11T00:51:21.963\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"KGet 2.4.2 in KDE SC 4.0.0 through 4.4.3 does not properly request download confirmation from the user, which makes it easier for remote attackers to overwrite arbitrary files via a crafted metalink file.\"},{\"lang\":\"es\",\"value\":\"KGet v2.4.2 en KDE SC v4.0.0 hasta v4.4.3 no solicita de forma adecuada la confirmaci\u00f3n de descarga por parte del usuario, lo que facilita a atacantes remotos sobrescribir ficheros de su elecci\u00f3n a trav\u00e9s un fichero metalik manipulado.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:N/I:P/A:P\",\"baseScore\":6.4,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":10.0,\"impactScore\":4.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-264\"}]}],\"configurations\":[{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kget:2.4.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6199E818-1535-4EC2-94BA-40D4FCE9D545\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kde_sc:2.2.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"501B4E7A-CA9A-42CD-B6A7-77EFD66A52A1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kde_sc:3.5.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D5052839-1F42-4816-95C9-FB33DAA29701\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kde_sc:4.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DBA5ADAB-9FBC-4785-A47E-B40D73A56853\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kde_sc:4.0.0:alpha1:*:*:*:*:*:*\",\"matchCriteriaId\":\"678A4353-ED2E-44CC-8A20-C215D0F82DAC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kde_sc:4.0.0:alpha2:*:*:*:*:*:*\",\"matchCriteriaId\":\"17C8F0A4-1679-410E-B445-9AF26705318C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kde_sc:4.0.0:beta1:*:*:*:*:*:*\",\"matchCriteriaId\":\"A639B21F-5CD6-4F64-855B-A832EBE877E5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kde_sc:4.0.0:beta2:*:*:*:*:*:*\",\"matchCriteriaId\":\"08475868-59F9-4D17-8322-7827A08EBCCF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kde_sc:4.0.0:beta3:*:*:*:*:*:*\",\"matchCriteriaId\":\"B99AD5C2-707D-40A7-A36D-C132952FFAF2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kde_sc:4.0.0:beta4:*:*:*:*:*:*\",\"matchCriteriaId\":\"A0B385A1-6728-4FBF-92E6-57F31DC47FEE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kde_sc:4.0.0:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"2946F3D1-4AA4-4B45-B3CE-0E4FD9241735\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kde_sc:4.0.0:rc2:*:*:*:*:*:*\",\"matchCriteriaId\":\"3C285D1B-7BF8-4975-BBA4-1D6862B29EC3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kde_sc:4.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F93D6A0C-E87C-413F-A27D-039765CBCEC4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kde_sc:4.0.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C29EA2DC-C308-45AE-96EB-5979BFDC9DBB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kde_sc:4.0.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B6FBA168-EBB4-487E-8FB4-2B3EE17A4FAB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kde_sc:4.0.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AFDB85F6-C71C-4EE9-8C75-9BAFB7C8C243\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kde_sc:4.0.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7B14A2BB-CE7E-4D24-8EB1-B25432BC95AC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kde_sc:4.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3DB880E4-9E8D-4A55-8829-2E6C08502F91\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kde_sc:4.1.0:alpha1:*:*:*:*:*:*\",\"matchCriteriaId\":\"C88B3F03-59CD-435B-A58B-C6C09A6063A6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kde_sc:4.1.0:beta1:*:*:*:*:*:*\",\"matchCriteriaId\":\"49E37E6A-2773-49D9-8503-1D6B2A42F2FA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kde_sc:4.1.0:beta2:*:*:*:*:*:*\",\"matchCriteriaId\":\"DC47CA15-8868-4CC5-8C12-68429BF88A0E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kde_sc:4.1.0:rc:*:*:*:*:*:*\",\"matchCriteriaId\":\"7A9EE07F-DA83-4DEC-BE81-3C597BED273C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kde_sc:4.1.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F33CFD9E-D0D9-4A9B-8A48-AAEF96F43C9D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kde_sc:4.1.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D70FA8B9-9F99-4524-961C-2EE8C0AA864F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kde_sc:4.1.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BFF32A58-4E0B-41AF-9129-352A0322E922\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kde_sc:4.1.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1888CC58-3F5C-407B-BF2E-E7899C1B7828\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kde_sc:4.1.80:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"105CAB1E-D97D-4217-8801-C098C69006B7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kde_sc:4.1.85:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F17A6896-7425-4582-92E2-B357181A2C64\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kde_sc:4.1.96:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E28F1A08-C678-493D-A9CB-84AC70A69423\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kde_sc:4.2:beta2:*:*:*:*:*:*\",\"matchCriteriaId\":\"BBAA496B-834F-4322-8081-08A4B042A9F4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kde_sc:4.2:rc:*:*:*:*:*:*\",\"matchCriteriaId\":\"84E66D2A-F6DF-41E3-BFBC-C3E5A54616E8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kde_sc:4.2.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8807A9BE-2ECE-4A14-BCD7-59036C46C826\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kde_sc:4.2.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8C1FFCDE-F569-47D3-9E0D-94096EE0E16D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kde_sc:4.2.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"692D0AC5-E946-4D6D-999E-44C66FAEB5CF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kde_sc:4.2.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6DB038BD-B89D-4C9F-8AEB-B65F62ECAC8B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kde_sc:4.2.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9594B2F9-6B74-4CA8-A43B-EAE4B19293C5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kde_sc:4.3.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"32EB3F1E-9745-4D31-AC8B-B85418A9215E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kde_sc:4.3.0:beta1:*:*:*:*:*:*\",\"matchCriteriaId\":\"BECE4B3A-E481-4CE0-B5CE-9842DB47C8D3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kde_sc:4.3.0:beta3:*:*:*:*:*:*\",\"matchCriteriaId\":\"0740C404-69A7-45AD-AD99-4B8AD09FD09B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kde_sc:4.3.0:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"3242128C-7653-4E6C-A72D-62D033632154\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kde_sc:4.3.0:rc2:*:*:*:*:*:*\",\"matchCriteriaId\":\"8EFDC84F-F851-4D28-AE64-9ED99389023C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kde_sc:4.3.0:rc3:*:*:*:*:*:*\",\"matchCriteriaId\":\"80B35884-311B-4FAF-AC8D-5F886A86CAFB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kde_sc:4.3.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"096EA629-5CA5-42B6-B6BF-9B401623D411\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kde_sc:4.3.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B411BAA5-A57C-43D7-B99D-BBF90AAA0867\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kde_sc:4.3.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"939121D6-2E82-4E9C-8D2E-753A48A2DBAC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kde_sc:4.3.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6B67C346-02AA-4719-BFD1-D6D5357B2C74\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kde_sc:4.3.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8FD07C23-B63D-43A1-9930-B04938CE2A88\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kde_sc:4.4.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A0D84A35-4355-4BBB-BC67-A455EDC8A213\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kde_sc:4.4.0:beta1:*:*:*:*:*:*\",\"matchCriteriaId\":\"DDC30651-790E-48C9-B979-5948B72B92CA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kde_sc:4.4.0:beta2:*:*:*:*:*:*\",\"matchCriteriaId\":\"3C0B5127-B5F9-490D-90E6-79963555472B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kde_sc:4.4.0:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"CE030856-57FE-4FA0-BE88-5D038C24E927\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kde_sc:4.4.0:rc2:*:*:*:*:*:*\",\"matchCriteriaId\":\"FB2B3EC5-713F-4996-8532-DBCEE7D32481\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kde_sc:4.4.0:rc3:*:*:*:*:*:*\",\"matchCriteriaId\":\"CACB3D53-D2B4-4105-816A-3B286C57B229\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kde_sc:4.4.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"376563D6-9847-4596-8E7F-A1B4E4437DA9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kde_sc:4.4.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CF01B401-CDAF-4853-B582-EC13A352A4B2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kde:kde_sc:4.4.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"59FFB800-D27D-4B7F-A895-C757B18B3201\"}]}]}],\"references\":[{\"url\":\"http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051692.html\",\"source\":\"PSIRT-CNA@flexerasoftware.com\"},{\"url\":\"http://marc.info/?l=oss-security\u0026m=127378789518426\u0026w=2\",\"source\":\"PSIRT-CNA@flexerasoftware.com\"},{\"url\":\"http://osvdb.org/64689\",\"source\":\"PSIRT-CNA@flexerasoftware.com\"},{\"url\":\"http://secunia.com/advisories/39528\",\"source\":\"PSIRT-CNA@flexerasoftware.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/39787\",\"source\":\"PSIRT-CNA@flexerasoftware.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/secunia_research/2010-70/\",\"source\":\"PSIRT-CNA@flexerasoftware.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://securitytracker.com/id?1023984\",\"source\":\"PSIRT-CNA@flexerasoftware.com\"},{\"url\":\"http://www.kde.org/info/security/advisory-20100513-1.txt\",\"source\":\"PSIRT-CNA@flexerasoftware.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/archive/1/511279/100/0/threaded\",\"source\":\"PSIRT-CNA@flexerasoftware.com\"},{\"url\":\"http://www.securityfocus.com/archive/1/511294/100/0/threaded\",\"source\":\"PSIRT-CNA@flexerasoftware.com\"},{\"url\":\"http://www.securityfocus.com/bid/40141\",\"source\":\"PSIRT-CNA@flexerasoftware.com\"},{\"url\":\"http://www.ubuntu.com/usn/USN-938-1\",\"source\":\"PSIRT-CNA@flexerasoftware.com\"},{\"url\":\"http://www.vupen.com/english/advisories/2010/1142\",\"source\":\"PSIRT-CNA@flexerasoftware.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.vupen.com/english/advisories/2010/1144\",\"source\":\"PSIRT-CNA@flexerasoftware.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.vupen.com/english/advisories/2010/3096\",\"source\":\"PSIRT-CNA@flexerasoftware.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/58629\",\"source\":\"PSIRT-CNA@flexerasoftware.com\"},{\"url\":\"http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051692.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://marc.info/?l=oss-security\u0026m=127378789518426\u0026w=2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://osvdb.org/64689\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/39528\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/39787\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/secunia_research/2010-70/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://securitytracker.com/id?1023984\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.kde.org/info/security/advisory-20100513-1.txt\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/archive/1/511279/100/0/threaded\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/archive/1/511294/100/0/threaded\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/40141\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.ubuntu.com/usn/USN-938-1\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.vupen.com/english/advisories/2010/1142\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.vupen.com/english/advisories/2010/1144\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.vupen.com/english/advisories/2010/3096\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/58629\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
  }
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.