KDE ktvision 0.1.1-271 and earlier allows local attackers to gain root privileges via a symlink attack on a user configuration file.

kfm as included with KDE 1.x can allow a local attacker to gain additional privileges via a symlink attack in the kfm cache directory in /tmp.

Format string vulnerability in kvt in KDE 1.1.2 may allow local users to execute arbitrary commands via a DISPLAY environmental variable that contains formatting characters.

The KApplication class in the KDE 1.1.2 configuration file management capability allows local users to overwrite arbitrary files.

Buffer overflow in KDE kdesud on Linux allows local uses to gain privileges via a long DISPLAY environmental variable.

The KDE kscd program does not drop privileges when executing a program specified in a user's SHELL environmental variable, which allows the user to gain privileges by specifying an alternate program to execute.

KDE K-Mail allows local users to gain privileges via a symlink attack in temporary user directories.

Buffer overflow in KDE Kmail allows a remote attacker to cause a denial of service via an attachment with a long file name.

Vulnerabilities in the KDE kvt terminal program allow local users to gain root privileges.

The libmediatool library used for the KDE mediatool allows local users to create arbitrary files via a symlink attack.