KDE suffers from multiple insufficient validation vulnerabilities that can result in the execution of active content. Versions below 4.3.2 are affected.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/82298/oCERT-2009-015.txt
Source: https://packetstormsecurity.com/files/82298/Open-Source-CERT-Security-Advisory-2009.15.html