CVE-2003-1170

Name of the Vulnerable Software and Affected Versions kpopup versions 0.9.1 through 0.9.5pre2

Description The issue allows local users to cause a denial of service, potentially leading to a segmentation fault, and may also enable the execution of arbitrary code. This is achieved through the use of format string specifiers in command line arguments.

Recommendations For kpopup versions 0.9.1 through 0.9.5pre2, consider restricting the use of command line arguments to minimize the risk of exploitation until a patch is available. At the moment, there is no information about a newer version that contains a fix for this issue.