CastleCops, Internet Crime Fighters
Need help? Click here to register for free! Absolutely zero advertisements on this site!

$9736.22 of $21422.68
left sidedonated so farneed $11686.46 donated to reach our goalright side, our goal
Help CastleCops serve the community on new servers, Donate Here to reach our goal.

Donation/Premium
spacer
Donations. Become Premium Today! Premium Icon
block bottom
Security Central
spacer
· Home
· PIRT/Fried Phish
· MIRT
· SIRT
· Deutsch
· Wiki
· Newsletter
· O16/ActiveX
· CLSID List
· Contest2007
· Downloads
· Feedback (send)
· Forums
· HijackThis
· Hijacktrend
· LSPs
· My Downloads
· O18
· O20
· O21
· O22
· O23
· O9
· Premium
· Private Messages
· Proxomitron
· Reviews
· Search
· StartupList
· Stories Archive
· Submit News
· WsIRT
· Your Account
· Acceptable Use Policy
block bottom
Survey
spacer
Was 2007 a good year?

Yes it was a wonderful year
Yes, but there is always room for improvement
Status quo
It was a challenge
Other (leave comment)



Results
Polls

Votes: 941
Comments: 25
block bottom
spacer spacer
image Advisories!: Debian Security Advisory image
Linux
DSA-296-1 kdebase -- insecure execution
Date Reported:
30 Apr 2003
Affected Packages:
kdebase
Vulnerable:
Yes
Security database references:
In Mitre's CVE dictionary: CAN-2003-0204.

More information:
The KDE team discoverd a vulnerability in the way KDE uses Ghostscript software for processing of PostScript (PS) and PDF files. An attacker could provide a malicious PostScript or PDF file via mail or websites that could lead to executing arbitrary commands under the privileges of the user viewing the file or when the browser generates a directory listing with thumbnails.


For the stable distribution (woody) this problem has been fixed in version 2.2.2-14.4 of kdebase and associated packages.

The old stable distribution (potato) is not affected since it does not contain KDE.

For the unstable distribution (sid) this problem will be fixed soon.

For the unofficial backport of KDE 3.1.1 to woody by Ralf Nolden on download.kde.org, this problem has been fixed in version 3.1.1-0woody3 of kdebase. Using the normal backport line for apt-get you will get the update:

deb http://download.kde.org/stable/latest/Debian stable main

Article Source
Debian

Posted on Wednesday, 30 April 2003 @ 07:55:09 UTC by cj (1025 reads)
[ Trackback ]		image

"Advisories!: Debian Security Advisory" | Login/Create an Account | 0 comments
Threshold
The comments are owned by the poster. We aren't responsible for their content.

No Comments Allowed for Anonymous, please register
 
Login
spacer
Nickname

Password

Security Code: Type Security Code: Usage signifies AUP acceptance
· New User? · Click here to create a registered account.
block bottom
Related Links
spacer
· del.icio.us!
· digg it!
· reddit!
· TrackBack (0)
· Debian GNU/Linux
· HotScripts
· W3 Consortium
· KDE
· More about Linux
· News by cj

Most read story about Linux:
The world's easiest Linux desktop deployment and management - NOW FREE!
block bottom
Article Rating
spacer
Average Score: 0
Votes: 0

Please take a second and vote for this article:

Bad
Regular
Good
Very Good
Excellent
block bottom
Options
spacer

Printer Friendly Page  Printer Friendly Page
block bottom
2002-2008 © Computer Cops LLC dba CastleCops®. All rights reserved.
Acceptable Use Policy. Use signifies your agreement.
282ppm 0.288s (0.008s)
Making cybercriminals unhappy since 2002*
In Memory of Trpm
spacer spacer