Kde K-Mail vulnerabilities
5 known vulnerabilities affecting kde/k-mail.
Total CVEs
5
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM3LOW1
Vulnerabilities
Page 1 of 1
CVE-1999-0735P4MEDIUMCVSS 4.6PoC≤ 1.12000-01-04
CVE-1999-0735 [MEDIUM] CVE-1999-0735: KDE K-Mail allows local users to gain privileges via a symlink attack in temporary user directories.
KDE K-Mail allows local users to gain privileges via a symlink attack in temporary user directories.
nvd
CVE-2007-1265P4HIGHCVSS 7.8v0.0.29.2v1.0.23+24 more2007-03-06
CVE-2007-1265 [HIGH] CVE-2007-1265: KMail 1.9.5 and earlier does not properly use the --status-fd argument when invoking GnuPG, which pr
KMail 1.9.5 and earlier does not properly use the --status-fd argument when invoking GnuPG, which prevents KMail from visually distinguishing between signed and unsigned portions of OpenPGP messages with multiple components, which allows remote attackers to forge the contents of a message without detection.
nvd
CVE-2006-7139P4LOWCVSS 2.6PoCv1.9.12007-03-07
CVE-2006-7139 [LOW] CWE-20 CVE-2006-7139: Kmail 1.9.1 on KDE 3.5.2, with "Prefer HTML to Plain Text" enabled, allows remote attackers to cause
Kmail 1.9.1 on KDE 3.5.2, with "Prefer HTML to Plain Text" enabled, allows remote attackers to cause a denial of service (crash) via an HTML e-mail with certain table and frameset tags that trigger a segmentation fault, possibly involving invalid free or delete operations.
nvd
CVE-2000-0481P4MEDIUMCVSS 5.0v1.0.23v1.0.24+6 more1999-06-01
CVE-2000-0481 [MEDIUM] CVE-2000-0481: Buffer overflow in KDE Kmail allows a remote attacker to cause a denial of service via an attachment
Buffer overflow in KDE Kmail allows a remote attacker to cause a denial of service via an attachment with a long file name.
nvd
CVE-2002-0342P4MEDIUMCVSS 5.0v1.22002-06-25
CVE-2002-0342 [MEDIUM] CVE-2002-0342: Kmail 1.2 on KDE 2.1.1 allows remote attackers to cause a denial of service (crash) via an email mes
Kmail 1.2 on KDE 2.1.1 allows remote attackers to cause a denial of service (crash) via an email message whose body is approximately 55 K long.
nvd