CVE-1999-1268

CVSS 2.0 Score 7.2 of 10 (high)

Details

Published Jan 6, 1999
Updated: Nov 20, 2024

Summary

CVE-1999-1268 is a vulnerability affecting the KDE konsole, a terminal emulator used in the KDE desktop environment. The issue allows local users to hijack or observe the sessions of other users by accessing certain devices. By exploiting this vulnerability, an attacker could gain unauthorized access to sensitive information, including data entered at the terminal, or even take control of another user's session. The root cause is a lack of proper access control in the device access feature of the konsole application. This vulnerability poses a significant risk to multi-user environments where multiple users may have access to the same system. It is highly recommended that affected systems are patched as soon as possible to mitigate the risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • K Desktop Environment

Affected Vendors

  • KDE Community
  • K. De