CVE-1999-1270
Severity:
Pending analysis
Type:
Unavailable / Other
Publication date:
11/07/1998
Last modified:
19/12/2017
Description
KMail in KDE 1.0 provides a PGP passphrase as a command line argument to other programs, which could allow local users to obtain the passphrase and compromise the PGP keys of other users by viewing the arguments via programs that list process information, such as ps.
Impact
Base Score 2.0
4.60
Severity 2.0
MEDIUM
Vulnerable products and versions
CPE | From | Up to |
---|---|---|
cpe:2.3:o:kde:kde:1.0:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page