CVE-2004-1158 in Konquerorinfo

Summary

Konqueror 3.x up to 3.2.2-6, and possibly other versions, allows remote attackers to spoof arbitrary web sites by injecting content from one window into a target window or tab whose name is known but resides in a different domain, as demonstrated using a pop-up window on a trusted web site, aka the "window injection" vulnerability.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Reservation

12/08/2004

Disclosure

01/10/2005

Moderation

VulDB entry created

Entries

VDB-23720 (1)

CPE

ready

CWE

CWE-290 (Confirmed)

CVSS

7.3

EPSS

0.03863

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2004-1158
NVD	https://nvd.nist.gov/vuln/detail/CVE-2004-1158
CVE Details	https://www.cvedetails.com/cve/CVE-2004-1158/

◂ Previous Overview Next ▸

Interested in the pricing of exploits?

See the underground prices here!