CVE-2003-0204

NameCVE-2003-0204
DescriptionKDE 2 and KDE 3.1.1 and earlier 3.x versions allows attackers to execute arbitrary commands via (1) PostScript (PS) or (2) PDF files, related to missing -dPARANOIDSAFER and -dSAFER arguments when using the kghostview Ghostscript viewer.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SuSE, Mageia, GitHub code/issues, web search, more)
ReferencesDSA-284, DSA-293, DSA-296
NVD severityhigh (attack range: remote)

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
kdebasesource(unstable)4:3.1.0-1high
kdebasesourcewoody4:2.2.2-13.woody.7highDSA-293
kdegraphicssource(unstable)4:3.1.0-1high
kdegraphicssourcewoody3.8.10-1.2highDSA-284

Search for package or bug name: Reporting problems