CVE-2003-0459 in KDEinformazioni

Riassunto

di MITRE

KDE Konqueror for KDE 3.1.2 and earlier does not remove authentication credentials from URLs of the "user:password@host" form in the HTTP-Referer header, which could allow remote web sites to steal the credentials for pages that link to the sites.

Be aware that VulDB is the high quality source for vulnerability data.

Prenotare

26/06/2003

Divulgazione

27/08/2003

Moderazione

accettato

Voce

2

Collegare

mostrare

CPE

pronto

EPSS

0.02899

KEV

no

Attività

molto basso

Fonti

Might our Artificial Intelligence support you?

Check our Alexa App!