JVN/CVE Demo: Cveinfos

CVE

Id: 9599
CVE No.: CVE-2004-1171
Status: Candidate
Description: KDE 3.2.x and 3.3.0 through 3.3.2, when saving credentials that are (1) manually entered by the user or (2) created by the SMB protocol handler, stores those credentials for plaintext in the user"s .desktop file, which may be created with world-readable permissions, which could allow local users to obtain usernames and passwords for remote resources such as SMB shares.
Phase: Assigned (20041210)
Votes: None (candidate not yet proposed)
Comments

Actions

Related CVE References

Id	CVE Id	CVE No.	Reference	Actions
65172	9599	CVE-2004-1171	BUGTRAQ:20041129 Password Disclosure for SMB Shares in KDE"s Konqueror	View
65173	9599	CVE-2004-1171	URL:http://marc.info/?l=bugtraq&m=110178786809694&w=2	View
65174	9599	CVE-2004-1171	FULLDISC:20041129 Password Disclosure for SMB Shares in KDE"s Konqueror	View
65175	9599	CVE-2004-1171	URL:http://archives.neohapsis.com/archives/fulldisclosure/2004-11/1292.html	View
65176	9599	CVE-2004-1171	MISC:http://www.sec-consult.com/index.php?id=118	View
65177	9599	CVE-2004-1171	BUGTRAQ:20041209 KDE Security Advisory: plain text password exposure	View
65178	9599	CVE-2004-1171	URL:http://marc.info/?l=bugtraq&m=110261063201488&w=2	View
65179	9599	CVE-2004-1171	CONFIRM:http://www.kde.org/info/security/advisory-20041209-1.txt	View
65180	9599	CVE-2004-1171	GENTOO:GLSA-200412-16	View
65181	9599	CVE-2004-1171	URL:http://www.gentoo.org/security/en/glsa/glsa-200412-16.xml	View
65182	9599	CVE-2004-1171	MANDRAKE:MDKSA-2004:150	View
65183	9599	CVE-2004-1171	URL:http://www.mandriva.com/security/advisories?name=MDKSA-2004:150	View
65184	9599	CVE-2004-1171	CERT-VN:VU#305294	View
65185	9599	CVE-2004-1171	URL:http://www.kb.cert.org/vuls/id/305294	View
65186	9599	CVE-2004-1171	CIAC:P-051	View
65187	9599	CVE-2004-1171	URL:http://www.ciac.org/ciac/bulletins/p-051.shtml	View
65188	9599	CVE-2004-1171	BID:11866	View
65189	9599	CVE-2004-1171	URL:http://www.securityfocus.com/bid/11866	View
65190	9599	CVE-2004-1171	OSVDB:12248	View
65191	9599	CVE-2004-1171	URL:http://www.osvdb.org/12248	View
65192	9599	CVE-2004-1171	SECTRACK:1012471	View
65193	9599	CVE-2004-1171	URL:http://securitytracker.com/id?1012471	View
65194	9599	CVE-2004-1171	SECUNIA:13560	View
65195	9599	CVE-2004-1171	URL:http://secunia.com/advisories/13560	View
65196	9599	CVE-2004-1171	SECUNIA:13477	View
65197	9599	CVE-2004-1171	URL:http://secunia.com/advisories/13477	View
65198	9599	CVE-2004-1171	SECUNIA:13486	View
65199	9599	CVE-2004-1171	URL:http://secunia.com/advisories/13486	View
65200	9599	CVE-2004-1171	XF:kde-smb-password-plaintext(18267)	View

Related JVN

Id	JVN No.	Title	Summary	CVE No.	CVE Id	CVSS_v2	CVSS_v3	JVN URL	Actions
62648	JVNDB-2005-000891	Veritas Backup Exec にバッファオーバーフローの脆弱性	Veritas Backup Exec 8.x (8.60.3878 Hotfix 68未満) および 9.x (9.1.4691 Hotfix 40未満) にバッファオーバーフローの脆弱性が確認されています。	CVE-2004-1172	9599	10		http://jvndb.jvn.jp/ja/contents/2005/JVNDB-2005-000891.html	View

Message	Memory use
Component initialization	1.39 MB
Controller action start	1.49 MB
Controller render start	2.29 MB
View render complete	2.74 MB

Message	Time in ms	Graph
Core Processing (Derived from $_SERVER["REQUEST_TIME"])	2.97
Event: Controller.initialize	0.02
Event: Controller.startup	0.06
Controller action	378.37
Event: Controller.beforeRender	4.98
» Processing toolbar data	4.87
Rendering View	11.37
» Event: View.beforeRender	0.02
» Rendering APP/View/Cveinfos/view.ctp	10.06
» Event: View.afterRender	0.02
» Event: View.beforeLayout	0.02
» Rendering APP/View/Layouts/default.ctp	0.76
» » Rendering CORE/Cake/View/Elements/sql_dump.ctp	0.09
Event: View.afterLayout	0.00

Constant	Value
APP	/virtual/inogo77/public_html/jvn/app/
APP_DIR	app
APPLIBS	/virtual/inogo77/public_html/jvn/app/Lib/
CACHE	/virtual/inogo77/public_html/jvn/app/tmp/cache/
CAKE	/virtual/inogo77/public_html/jvn/lib/Cake/
CAKE_CORE_INCLUDE_PATH	/virtual/inogo77/public_html/jvn/lib
CORE_PATH	/virtual/inogo77/public_html/jvn/lib/
CAKE_VERSION	2.6.0
CSS	/virtual/inogo77/public_html/jvn/app/webroot/css/
CSS_URL	css/
DS	/
FULL_BASE_URL	http://inogo77.s500.xrea.com
IMAGES	/virtual/inogo77/public_html/jvn/app/webroot/img/
IMAGES_URL	img/
JS	/virtual/inogo77/public_html/jvn/app/webroot/js/
JS_URL	js/
LOGS	/virtual/inogo77/public_html/jvn/app/tmp/logs/
ROOT	/virtual/inogo77/public_html/jvn
TESTS	/virtual/inogo77/public_html/jvn/app/Test/
TMP	/virtual/inogo77/public_html/jvn/app/tmp/
VENDORS	/virtual/inogo77/public_html/jvn/vendors/
WEBROOT_DIR	webroot
WWW_ROOT	/virtual/inogo77/public_html/jvn/app/webroot/

Environment Variable	Value
Php Version	5.6.40
Phprc	php56.ini
Php Fcgi Children	1
Pwd	/virtual/inogo77/public_html/.fast-cgi-bin
Php Fcgi Max Requests	10000
Shlvl	0
Path	/usr/local/bin:/usr/bin:/bin
Script Name	/jvn/app/webroot/index.php
Request Uri	/jvn/cveinfos/view/9599
Query String
Request Method	GET
Server Protocol	HTTP/1.1
Gateway Interface	CGI/1.1
Redirect Url	/jvn/app/webroot/cveinfos/view/9599
Remote Port	17740
Script Filename	/virtual/inogo77/public_html/jvn/app/webroot/index.php
Server Admin	[no address given]
Context Document Root	/virtual/inogo77/public_html
Context Prefix
Request Scheme	http
Document Root	/virtual/inogo77/public_html
Remote Addr	216.73.216.207
Server Port	80
Server Addr	160.251.151.205
Server Name	inogo77.s500.xrea.com
Server Software	Apache
Server Signature
Http Connection	close
Http Cache Control	max-age=259200
Http X Forwarded For	10.1.89.17
Http Via	1.1 squid-proxy-5b5d847c96-m5llr (squid/6.10)
Http Host	inogo77.s500.xrea.com
Http Accept Encoding	gzip, br, zstd, deflate
Http User Agent	Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)
Http Accept	/
Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Suspectharddos	1
Suspectdos	1
X Dostranslated Ip	216.73.216.207
Mm Country Code	US
Mmdb Info	result found
Mmdb Addr	216.73.216.207
Unique Id	aFy8HPYI8GKF070IWpdA1AAAAJc
Redirect Status	200
Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect Suspectharddos	1
Redirect Suspectdos	1
Redirect X Dostranslated Ip	216.73.216.207
Redirect Mm Country Code	US
Redirect Mmdb Info	result found
Redirect Mmdb Addr	216.73.216.207
Redirect Unique Id	aFy8HPYI8GKF070IWpdA1AAAAJc
Redirect Redirect Status	200
Redirect Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect Redirect Suspectharddos	1
Redirect Redirect Suspectdos	1
Redirect Redirect X Dostranslated Ip	216.73.216.207
Redirect Redirect Mm Country Code	US
Redirect Redirect Mmdb Info	result found
Redirect Redirect Mmdb Addr	216.73.216.207
Redirect Redirect Unique Id	aFy8HPYI8GKF070IWpdA1AAAAJc
Fcgi Role	RESPONDER
Php Self	/jvn/app/webroot/index.php
Request Time Float	1750907932.9334
Request Time	1750907932

CVE

Actions

Related CVE References

Related JVN

Request History

Session

Request

Cake Params

Post data

Query string

Cookie

Current Route

Sql Logs

default

Memory

Timers

Logs

View Variables

App Constants

CakePHP Constants

PHP Environment

Included Files

Include Paths

Included Files