CVE-2002-1306

Name of the Vulnerable Software and Affected Versions KDE 2.x versions 2.1 and later KDE 3.x versions prior to 3.0.4 kdelibs versions 2.2.2 kdelibs versions 3.0.3 kde-i18n-Catalan versions 3.0.3 kde-i18n-Danish versions 3.0.3 kde-i18n-Czech versions 3.0.3 kde-i18n-Chinese-Big5 versions 3.0.3 kde-i18n-3.0.3 versions 3.0.3 kde-i18n-British versions 3.0.3 kde-i18n-Brazil versions 3.0.3 kde-i18n-Afrikaans versions 3.0.3 kde-i18n-Chinese versions 3.0.3 qt versions 3.0.5 kcharselect versions 3.0.3 kamera versions 3.0.3 kaboodle versions 3.0.3 kdenetwork versions 2.2.2 kdenetwork versions 3.0.3 kdenetwork-ppp versions 2.2.2 kdeutils versions 3.0.3 kcoloredit versions 3.0.3 kdelibs-devel versions 2.2.2 kdelibs-sound versions 2.2.2 kdelibs-sound-devel versions 2.2.2 kdebindings versions 3.0.3 kdegraphics versions 2.2.2 kdegraphics versions 3.0.3 kdegraphics-devel versions 2.2.2 kdemultimedia versions 3.0.3 kdeadmin versions 3.0.3 kdevelop versions 2.1.3 kdesdk versions 3.0.3 kdeartwork versions 3.0.3 kdepim versions 3.0.3 karm versions 3.0.3 kdebase versions 3.0.3

Description The issue affects multiple packages of the KDE software suite in Red Hat Linux, allowing remote attackers to compromise the confidentiality, integrity, and availability of protected information. The vulnerabilities can be exploited remotely.

Recommendations As a temporary workaround, consider disabling the lisa daemon until a patch is available. Restrict access to the vulnerable kdelibs module to minimize the risk of exploitation. Avoid using the lan:// URL in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.