CVE-2005-0011: Buffer Overflow
First published: Mon May 02 2005(Updated: )
Multiple vulnerabilities in fliccd, when installed setuid root as part of the kdeedu Kstars support for Instrument Neutral Distributed Interface (INDI) in KDE 3.3 to 3.3.2, allow local users and remote attackers to execute arbitrary code via stack-based buffer overflows.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| KDE Kde Beta 3 | =3.3 | |
| KDE Kde Beta 3 | =3.3.1 | |
| KDE Kde Beta 3 | =3.3.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2005-0011?
CVE-2005-0011 is considered a high-severity vulnerability due to its ability to allow local users and remote attackers to execute arbitrary code.
How do I fix CVE-2005-0011?
To fix CVE-2005-0011, you should update KDE to version 3.3.3 or later, which addresses the buffer overflow vulnerabilities.
Which software versions are affected by CVE-2005-0011?
CVE-2005-0011 affects KDE versions 3.3, 3.3.1, and 3.3.2.
Can CVE-2005-0011 be exploited remotely?
Yes, CVE-2005-0011 can be exploited remotely by attackers, making it particularly dangerous.
What kind of vulnerabilities does CVE-2005-0011 include?
CVE-2005-0011 includes multiple stack-based buffer overflows that can lead to arbitrary code execution.
- agent/references
- agent/severity
- agent/weakness
- agent/author
- agent/description
- agent/type
- agent/event
- agent/first-publish-date
- agent/softwarecombine
- agent/last-modified-date
- agent/remedy
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-historical
- vendor/kde
- canonical/kde kde beta 3
- version/kde kde beta 3/3.3
- version/kde kde beta 3/3.3.1
- version/kde kde beta 3/3.3.2