PT-2016-7395 · Kde · Kdesu

Published

2016-10-11

Updated

2018-10-30

CVE-2016-7787

CVSS v3.1

4.9

Medium

Vector

AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N

Name of the Vulnerable Software and Affected Versions kdesu (affected versions not specified)

Description A maliciously crafted command line for kdesu can result in the user only seeing part of the commands that will actually get executed as super user.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Code Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-94

Related Identifiers

CVE-2016-7787

MGASA-2017-0473

OPENSUSE-SU-2016:2495-1

OPENSUSE-SU-2016:2498-1

Affected Products

Kdesu

PT-2016-7395 · Kde · Kdesu

CVE-2016-7787

Weakness Enumeration

Related Identifiers

Affected Products

References · 20