CVE-2010-1000

N/A Unknown

Published: May 17, 2010 Modified: April 29, 2026

Description

Directory traversal vulnerability in KGet in KDE SC 4.0.0 through 4.4.3 allows remote attackers to create arbitrary files via directory traversal sequences in the name attribute of a file element in a metalink file.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051692.html

Source: PSIRT-CNA@flexerasoftware.com

http://lists.fedoraproject.org/pipermail/package-announce/2011-April/058580.html

Source: PSIRT-CNA@flexerasoftware.com

http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00006.html

Source: PSIRT-CNA@flexerasoftware.com

http://marc.info/?l=oss-security&m=127378789518426&w=2

Source: PSIRT-CNA@flexerasoftware.com

http://osvdb.org/64690

Source: PSIRT-CNA@flexerasoftware.com

http://secunia.com/advisories/39528

Source: PSIRT-CNA@flexerasoftware.com

Vendor Advisory

http://secunia.com/advisories/39787

Source: PSIRT-CNA@flexerasoftware.com

Vendor Advisory

http://secunia.com/advisories/42423

Source: PSIRT-CNA@flexerasoftware.com

Vendor Advisory

http://secunia.com/secunia_research/2010-69/

Source: PSIRT-CNA@flexerasoftware.com

Vendor Advisory

http://securitytracker.com/id?1023984

Source: PSIRT-CNA@flexerasoftware.com

http://www.kde.org/info/security/advisory-20100513-1.txt

Source: PSIRT-CNA@flexerasoftware.com

Vendor Advisory

http://www.mandriva.com/security/advisories?name=MDVSA-2010:098

Source: PSIRT-CNA@flexerasoftware.com

http://www.securityfocus.com/archive/1/511281/100/0/threaded

Source: PSIRT-CNA@flexerasoftware.com

http://www.securityfocus.com/archive/1/511294/100/0/threaded

Source: PSIRT-CNA@flexerasoftware.com

http://www.securityfocus.com/bid/40141

Source: PSIRT-CNA@flexerasoftware.com

http://www.ubuntu.com/usn/USN-938-1

Source: PSIRT-CNA@flexerasoftware.com

http://www.vupen.com/english/advisories/2010/1142

Source: PSIRT-CNA@flexerasoftware.com

Vendor Advisory

http://www.vupen.com/english/advisories/2010/1144

Source: PSIRT-CNA@flexerasoftware.com

Vendor Advisory

http://www.vupen.com/english/advisories/2010/3096

Source: PSIRT-CNA@flexerasoftware.com

Vendor Advisory

http://www.vupen.com/english/advisories/2011/1101

Source: PSIRT-CNA@flexerasoftware.com

https://exchange.xforce.ibmcloud.com/vulnerabilities/58628

Source: PSIRT-CNA@flexerasoftware.com

http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051692.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://lists.fedoraproject.org/pipermail/package-announce/2011-April/058580.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00006.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://marc.info/?l=oss-security&m=127378789518426&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

http://osvdb.org/64690

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/39528

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://secunia.com/advisories/39787

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://secunia.com/advisories/42423

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://secunia.com/secunia_research/2010-69/

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://securitytracker.com/id?1023984

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.kde.org/info/security/advisory-20100513-1.txt

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.mandriva.com/security/advisories?name=MDVSA-2010:098

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/archive/1/511281/100/0/threaded

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/archive/1/511294/100/0/threaded

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/40141

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.ubuntu.com/usn/USN-938-1

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2010/1142

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.vupen.com/english/advisories/2010/1144

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.vupen.com/english/advisories/2010/3096

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.vupen.com/english/advisories/2011/1101

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/58628

Source: af854a3a-2127-422b-91ae-364da2661108

42 reference(s) from NVD

Quick Stats

CVSS v3 Score

N/A / 10.0

EPSS (Exploit Probability)

2.4%

85th percentile

Exploitation Status

Not in CISA KEV

Weaknesses (CWE)

CWE-22

Affected Vendors

kde

Related CVEs

CVE-2026-8407 N/A

CVE-2026-8278 N/A

CVE-2026-5089 N/A

CVE-2026-43993 8.2

CVE-2026-43992 9.8