CVE-2004-1171: CVE-2004-1171

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2004-1171

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

KDE 3.2.x and 3.3.0 through 3.3.2, when saving credentials that are (1) manually entered by the user or (2) created by the SMB protocol handler, stores those credentials for plaintext in the user's .desktop file, which may be created with world-readable permissions, which could allow local users to obtain usernames and passwords for remote resources such as SMB shares.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

KDE SMB用户凭证信息泄露漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

KDE是一个运行于类Unix操作系统的桌面环境。 KDE 3.2.x及3.3.0至3.3.2版本中存在信息泄露漏洞。在保存用户手工输入或由 SMB 协议处理器创建的SMB用户凭证时，KDE以明文方式将用户凭证保存于用户的.desktop文件中，而该文件是所有人可读的。使得本地用户可以获取SMB用户名和密码，从而获得远程资源。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2004-1171

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2004-1171

Please Login to view more intelligence information

http://www.kde.org/info/security/advisory-20041209-1.txtx_refsource_CONFIRM
http://www.sec-consult.com/index.php?id=118x_refsource_MISC
http://www.osvdb.org/12248vdb-entryx_refsource_OSVDB
http://www.securityfocus.com/bid/11866vdb-entryx_refsource_BID
http://www.ciac.org/ciac/bulletins/p-051.shtmlthird-party-advisorygovernment-resourcex_refsource_CIAC
http://secunia.com/advisories/13477third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/13486third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/13560third-party-advisoryx_refsource_SECUNIA
http://securitytracker.com/id?1012471vdb-entryx_refsource_SECTRACK
http://www.kb.cert.org/vuls/id/305294third-party-advisoryx_refsource_CERT-VN
http://www.mandriva.com/security/advisories?name=MDKSA-2004:150vendor-advisoryx_refsource_MANDRAKE
http://www.gentoo.org/security/en/glsa/glsa-200412-16.xmlvendor-advisoryx_refsource_GENTOO
https://exchange.xforce.ibmcloud.com/vulnerabilities/18267vdb-entryx_refsource_XF
http://marc.info/?l=bugtraq&m=110261063201488&w=2mailing-listx_refsource_BUGTRAQ
http://marc.info/?l=bugtraq&m=110178786809694&w=2mailing-listx_refsource_BUGTRAQ
http://archives.neohapsis.com/archives/fulldisclosure/2004-11/1292.htmlmailing-listx_refsource_FULLDISC
https://nvd.nist.gov/vuln/detail/CVE-2004-1171

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2004-1171

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

I. Basic Information for CVE-2004-1171

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2004-1171

III. Intelligence Information for CVE-2004-1171

IV. Related Vulnerabilities

V. Comments for CVE-2004-1171

Leave a comment