What is the severity of CVE-2005-2101?

CVE-2005-2101 has been rated as a moderate severity vulnerability.

How do I fix CVE-2005-2101?

To mitigate CVE-2005-2101, upgrade KDE to version 3.4.3 or later.

Who is affected by CVE-2005-2101?

Local users of KDE versions 3.0 to 3.4.2 are affected by CVE-2005-2101.

What does CVE-2005-2101 allow attackers to do?

CVE-2005-2101 allows local users to overwrite arbitrary files due to insecure temporary file creation.

In which KDE versions is CVE-2005-2101 present?

CVE-2005-2101 is found in KDE versions from 3.0 to 3.4.2.

Vulnerability/
CVE-2005-2101

medium

CWE

NVD-CWE-Other

17/8/2005

7/8/2024

CVE-2005-2101

First published: Wed Aug 17 2005(Updated: )

langen2kvtml in KDE 3.0 to 3.4.2 creates insecure temporary files in /tmp with predictable names, which allows local users to overwrite arbitrary files.

Credit: secalert@redhat.com

Affected Software	Affected Version	How to fix
KDE Kde Beta 3	=3.0
KDE Kde Beta 3	=3.0.1
KDE Kde Beta 3	=3.0.2
KDE Kde Beta 3	=3.0.3
KDE Kde Beta 3	=3.0.4
KDE Kde Beta 3	=3.0.5
KDE Kde Beta 3	=3.0.5a
KDE Kde Beta 3	=3.1
KDE Kde Beta 3	=3.1.1
KDE Kde Beta 3	=3.1.2
KDE Kde Beta 3	=3.1.3
KDE Kde Beta 3	=3.1.4
KDE Kde Beta 3	=3.1.5
KDE Kde Beta 3	=3.1_alpha1
KDE Kde Beta 3	=3.1_beta1
KDE Kde Beta 3	=3.1_beta2
KDE Kde Beta 3	=3.2
KDE Kde Beta 3	=3.2.0_beta1
KDE Kde Beta 3	=3.2.1
KDE Kde Beta 3	=3.2.2
KDE Kde Beta 3	=3.2.3
KDE Kde Beta 3	=3.3
KDE Kde Beta 3	=3.3.1
KDE Kde Beta 3	=3.3.2
KDE Kde Beta 3	=3.4
KDE Kde Beta 3	=3.4.1
KDE Kde Beta 3	=3.4.2

Remedy

http://www.kde.org/info/security/advisory-20050815-1.txt

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2005-2101?
CVE-2005-2101 has been rated as a moderate severity vulnerability.
How do I fix CVE-2005-2101?
To mitigate CVE-2005-2101, upgrade KDE to version 3.4.3 or later.
Who is affected by CVE-2005-2101?
Local users of KDE versions 3.0 to 3.4.2 are affected by CVE-2005-2101.
What does CVE-2005-2101 allow attackers to do?
CVE-2005-2101 allows local users to overwrite arbitrary files due to insecure temporary file creation.
In which KDE versions is CVE-2005-2101 present?
CVE-2005-2101 is found in KDE versions from 3.0 to 3.4.2.

agent/references
agent/type
agent/first-publish-date
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/weakness
agent/remedy
agent/author
agent/severity
agent/last-modified-date
agent/event
agent/description
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
collector/nvd-historical
vendor/kde
canonical/kde kde beta 3
version/kde kde beta 3/3.0
version/kde kde beta 3/3.0.1
version/kde kde beta 3/3.0.2
version/kde kde beta 3/3.0.3
version/kde kde beta 3/3.0.4
version/kde kde beta 3/3.0.5
version/kde kde beta 3/3.0.5a
version/kde kde beta 3/3.1
version/kde kde beta 3/3.1.1
version/kde kde beta 3/3.1.2
version/kde kde beta 3/3.1.3
version/kde kde beta 3/3.1.4
version/kde kde beta 3/3.1.5
version/kde kde beta 3/3.1_alpha1
version/kde kde beta 3/3.1_beta1
version/kde kde beta 3/3.1_beta2
version/kde kde beta 3/3.2
version/kde kde beta 3/3.2.0_beta1
version/kde kde beta 3/3.2.1
version/kde kde beta 3/3.2.2
version/kde kde beta 3/3.2.3
version/kde kde beta 3/3.3
version/kde kde beta 3/3.3.1
version/kde kde beta 3/3.3.2
version/kde kde beta 3/3.4
version/kde kde beta 3/3.4.1
version/kde kde beta 3/3.4.2