Unpatched KDE vulnerability disclosed on Twitter

guest · Aug 6, 2019

Unpatched KDE vulnerability disclosed on Twitter
Just viewing --not running-- a malicious .desktop or .directory file inside a file browser can run malicious code on a user's system
August 6, 2019
https://www.zdnet.com/article/unpatched-kde-vulnerability-disclosed-on-twitter/

A security researcher has published proof-of-concept (PoC) code for a vulnerability in the KDE software framework. A fix is not available at the time of writing.
The bug was discovered by Dominik "zer0pwn" Penner and impacts the KDE Frameworks package 5.60.0 and below.
HOW THE VULNERABILITY WORKS
The vulnerability occurs because of the way the KDesktopFile class (part of KDE Frameworks) handles .desktop or .directory files.

Penner discovered that he could create malicious .desktop and .directory files that could be used to run malicious code on a user's computer.
In a technical write-up of the bug that Penner published on GitHub, the researcher says the vulnerability can be used to place shell commands inside the standard "Icon" entries found in .desktop and .directory files
Click to expand...

guest · Aug 9, 2019

KDE Vulnerability Fixed By Removing Shell Command Support
August 9, 2019
https://www.bleepingcomputer.com/ne...lity-fixed-by-removing-shell-command-support/

A code execution vulnerability in the KDE desktop manager has been resolved by removing support for shell commands in the KConfig configuration system.

Earlier this week, BleepingComputer reported on a zero-day code execution vulnerability in the KDE desktop manager that could allow a remote attacker to execute commands on a user's machine by tricking them into extracting an archive and openings its folder.
To fix this vulnerability, the KDE Project has decided to remove support for the shell commands in KConfig entries, but continue to allow support for environment variable expansion.

KDE users can fix this vulnerability by updating kconfig to version 5.61.0 or greater or apply this patch. Users of KDE 4 are advised to apply this patch.
It is strongly advised that all KDE users install these updates.
Click to expand...

Log in or Sign up

Unpatched KDE vulnerability disclosed on Twitter

guest Guest

guest Guest

Log in or Sign up

Unpatched KDE vulnerability disclosed on Twitter

guest Guest

guest Guest

Useful Searches