Packet Storm - Information Security News, Files, Tools, Exploits, Advisories and Whitepapers http://packetstormsecurity.org/ en-us Mon, 28 May 2012 05:09:40 GMT 144400 http://packetstormsecurity.org/ http://www.google-analytics.com/__utm.gif?utmwv=1.3&utmn=2209458188&utmcs=ISO-8859-1&utmsr=31337x31337&utmsc=32-bit&utmul=en-us&utmje=0&utmfl=-&utmcn=1&utmdt=Files%u2248%20Packet%20Storm&utmhn=packetstormsecurity.org&utmr=-&utmp=%2Ffiledesc%2Fsecunia-kdekgetifo.txt.html%2F&utmac=UA-18885198-1&utmcc=__utma%3D32867617.2209458188.1338181780.1338181780.1338181780.1%3B%2B__utmz%3D32867617.1338181780.1.1.utmccn%3D(direct)%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none) http://packetstormsecurity.org/files/89523/secunia-kdekgetifo.txt http://packetstormsecurity.org/files/89523/secunia-kdekgetifo.txt http://packetstormsecurity.org/files/89523/KDE-KGet-Insecure-File-Operation-Vulnerability.html Fri, 14 May 2010 17:21:13 GMT Secunia Research has discovered a vulnerability in KDE, which can be exploited by malicious people to bypass certain security features. The vulnerability is caused by KGet downloading files without the user's acknowledgment, overwriting existing files of the same name when displaying a dialog box that allows a user to choose the file to download out of the options offered by a metalink file. KDE version 4.4.2 is affected.