Computer Security

CVE-2004-0746
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



CVECVE-2004-0746
StatusCandidate
DescriptionKonqueror in KDE 3.2.3 and earlier allows web sites to set cookies for country-specific top-level domains, such as .ltd.uk, .plc.uk and .firm.in, which could allow remote attackers to perform a session fixation attack and hijack a user's HTTP session.
PhaseAssigned (26.07.2004)
NVD:http://nvd.nist.gov/nvd.cfm?cvename=CVE-2004-0746
ReferencesBID : 10991
 BUGTRAQ : 20040823 KDE Security Advisory: Konqueror Cross-Domain Cookie Injection
 CONECTIVA : CLA-2004:864
 CONFIRM : http://www.kde.org/info/security/advisory-20040823...
 MANDRAKE : MDKSA-2004:086
 SECUNIA : 12341
 XF : kde-konqueror-cookie-set(17063)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod
 


Rating@Mail.ru