CVE Vulnerabilities

CVE-2004-0721

Published: Jul 27, 2004 | Modified: Oct 11, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

Konqueror 3.1.3, 3.2.2, and possibly other versions does not properly prevent a frame in one domain from injecting content into a frame that belongs to another domain, which facilitates web site spoofing and other attacks, aka the frame injection vulnerability.

Affected Software

Name Vendor Start Version End Version
Konqueror Kde 3.1.3 (including) 3.1.3 (including)
Konqueror Kde 3.2.2 (including) 3.2.2 (including)
Red Hat Enterprise Linux 3 RedHat kdebase-6:3.1.3-5.4 *
Red Hat Enterprise Linux 3 RedHat kdelibs-6:3.1.3-6.6 *

References