Arbitrary File Creation and Truncation Vulnerability in KDE before 3.3.0

Arbitrary File Creation and Truncation Vulnerability in KDE before 3.3.0

CVE-2004-0689 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

KDE before 3.3.0 does not properly handle when certain symbolic links point to "stale" locations, which could allow local users to create or truncate arbitrary files.

Learn more about our User Device Pen Test.