Vulnerability Database

289,689

Total vulnerabilities in the database

CVE-2000-0393

The KDE kscd program does not drop privileges when executing a program specified in a user's SHELL environmental variable, which allows the user to gain privileges by specifying an alternate program to execute.

  • Published: May 16, 2000
  • Updated: Apr 13, 2023
  • CVE: CVE-2000-0393
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 7.2
  • AV:L/AC:L/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Software From Fixed in
kde / kde 2.0_beta 2.0_beta.x
kde / kde 1.1.1 1.1.1.x
kde / kde 1.1 1.1.x
kde / kde 1.2 1.2.x