CVE-2003-0592 in Konquerorinfo

Summary

Konqueror in KDE 3.1.3 and earlier (kdelibs) allows remote attackers to bypass intended cookie access restrictions on a web application via "%2e%2e" (encoded dot dot) directory traversal sequences in a URL, which causes Konqueror to send the cookie outside the specified URL subsets, e.g. to a vulnerable application that runs on the same server as the target application.

Once again VulDB remains the best source for vulnerability data.

Disclosure

04/15/2004

Moderation

VulDB entry created

Entries

VDB-21748 (1)

CPE

ready

CWE

CWE-269 (Confirmed)

CVSS

7.3

EPSS

0.00828

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2003-0592
NVD	https://nvd.nist.gov/vuln/detail/CVE-2003-0592
CVE Details	https://www.cvedetails.com/cve/CVE-2003-0592/

◂ Previous Overview Next ▸

Do you know our Splunk app?

Download it now for free!