CVE-2008-1671

N/A Unknown
Published: April 28, 2008 Modified: April 23, 2026
View on NVD

Description

start_kdeinit in KDE 3.5.5 through 3.5.9, when installed setuid root, allows local users to cause a denial of service and possibly execute arbitrary code via "user-influenceable input" (probably command-line arguments) that cause start_kdeinit to send SIGUSR1 signals to other processes.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory
ftp://ftp.kde.org/pub/kde/security_patches/post-kde-3.5.5-kinit.diff
Source: secalert@redhat.com
Exploit
http://lists.opensuse.org/opensuse-security-announce/2008-05/msg00000.html
Source: secalert@redhat.com
http://secunia.com/advisories/29951
Source: secalert@redhat.com
Vendor Advisory
http://secunia.com/advisories/29977
Source: secalert@redhat.com
http://secunia.com/advisories/30113
Source: secalert@redhat.com
http://security.gentoo.org/glsa/glsa-200804-30.xml
Source: secalert@redhat.com
http://www.kde.org/info/security/advisory-20080426-2.txt
Source: secalert@redhat.com
http://www.mandriva.com/security/advisories?name=MDVSA-2008:097
Source: secalert@redhat.com
http://www.securityfocus.com/bid/28938
Source: secalert@redhat.com
http://www.securitytracker.com/id?1019924
Source: secalert@redhat.com
http://www.ubuntu.com/usn/usn-608-1
Source: secalert@redhat.com
http://www.vupen.com/english/advisories/2008/1370/references
Source: secalert@redhat.com
https://exchange.xforce.ibmcloud.com/vulnerabilities/42039
Source: secalert@redhat.com
ftp://ftp.kde.org/pub/kde/security_patches/post-kde-3.5.5-kinit.diff
Source: af854a3a-2127-422b-91ae-364da2661108
Exploit
http://lists.opensuse.org/opensuse-security-announce/2008-05/msg00000.html
Source: af854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/29951
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
http://secunia.com/advisories/29977
Source: af854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/30113
Source: af854a3a-2127-422b-91ae-364da2661108
http://security.gentoo.org/glsa/glsa-200804-30.xml
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.kde.org/info/security/advisory-20080426-2.txt
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.mandriva.com/security/advisories?name=MDVSA-2008:097
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.securityfocus.com/bid/28938
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.securitytracker.com/id?1019924
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.ubuntu.com/usn/usn-608-1
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.vupen.com/english/advisories/2008/1370/references
Source: af854a3a-2127-422b-91ae-364da2661108
https://exchange.xforce.ibmcloud.com/vulnerabilities/42039
Source: af854a3a-2127-422b-91ae-364da2661108

26 reference(s) from NVD

Quick Stats

CVSS v3 Score
N/A / 10.0
EPSS (Exploit Probability)
0.1%
32th percentile
Exploitation Status
Not in CISA KEV

Weaknesses (CWE)

CWE-16

Affected Vendors

kde

Related CVEs

CVE-2026-42615 7.2
CVE-2026-23773 4.3
CVE-2026-40560 N/A
CVE-2026-7363 N/A
CVE-2026-7361 N/A