CVE-2002-1281

critical

Description

Unknown vulnerability in the rlogin KIO subsystem (rlogin.protocol) of KDE 2.x 2.1 and later, and KDE 3.x 3.0.4 and earlier, allows local and remote attackers to execute arbitrary code via a certain URL.

References

http://www.securityfocus.com/bid/6182

http://www.redhat.com/support/errata/RHSA-2002-220.html

http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-079.php

http://www.kde.org/info/security/advisory-20021111-1.txt

http://www.iss.net/security_center/static/10602.php

http://www.debian.org/security/2002/dsa-204

http://secunia.com/advisories/8298

http://marc.info/?l=bugtraq&m=103728981029342&w=2

http://marc.info/?l=bugtraq&m=103712550205730&w=2

Details

Source: Mitre, NVD

Published: 2002-11-29

Updated: 2025-04-03

Risk Information

CVSS v2

Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Severity: High

CVSS v3

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: Critical

EPSS

EPSS: 0.0633

Detections

Analytics