Computer Security
[EN] securityvulns.ru no-pyccku


kde4libs information leakage
Published:04.06.2013
Source:
SecurityVulns ID:13105
Type:library
Threat Level:
5/10
Description:User's credentials are incorrectly requested under some conditions.
Affected:KDE : kde4libs 4.10
CVE:CVE-2013-2074 (kioslave/http/http.cpp in KIO in kdelibs 4.10.3 and earlier allows attackers to discover credentials via a crafted request that triggers an "internal server error," which includes the username and password in an error message.)
Original documentdocumentUBUNTU, [USN-1842-1] KDE-Libs vulnerability (04.06.2013)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod