CVE-2000-0393
Kde Kde — NVD-CWE-Other
- Published: 2000-05-16T04:00:00.000
- Last modified: 2025-04-03T01:03:51.193
- Vendors: Kde
- Products: Kde
- CWE: NVD-CWE-Other
CVE-2000-0393 — The KDE kscd program does not drop privileges when executing a program specified in a user's SHELL environmental variable, which allows the user to gain privileges by specifying an alternate program to execute. [Weakness: NVD-CWE-Other]
Related CVE by CWE
No related CWE found.
Top CVE for Vendor
No items for this vendor.
Recently Exploited Similar Vulnerabilities
No recent KEV-listed items for this vendor/product.
The KDE kscd program does not drop privileges when executing a program specified in a user’s SHELL environmental variable, which allows the user to gain privileges by specifying an alternate program to execute.
🧠 Explainer: What this vulnerability means
Summary: The issue in Kde by Kde (CWE: unspecified) may enable attacks.
Impact: Potential impact includes remote code execution, data theft, or denial of service.
Mitigation: Upgrade immediately to the remediated release and follow vendor hardening guidance.
- http://archives.neohapsis.com/archives/bugtraq/2000-05/0172.html []
- http://www.novell.com/linux/security/advisories/suse_security_announce_50.html []
- http://www.securityfocus.com/bid/1206 []
- http://archives.neohapsis.com/archives/bugtraq/2000-05/0172.html []
- http://www.novell.com/linux/security/advisories/suse_security_announce_50.html []
- http://www.securityfocus.com/bid/1206 []
No explicit mitigation/advisory links found in references.