CVE Vulnerabilities

CVE-2004-0866

Published: Sep 16, 2004 | Modified: Jul 23, 2021
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

Internet Explorer 6.0 allows web sites to set cookies for country-specific top-level domains, such as .ltd.uk, .plc.uk, and .sch.uk, which could allow remote attackers to perform a session fixation attack and hijack a users HTTP session.

Affected Software

Name Vendor Start Version End Version
Konqueror Kde 2.1.1 (including) 2.1.1 (including)
Konqueror Kde 2.1.2 (including) 2.1.2 (including)
Konqueror Kde 2.2.1 (including) 2.2.1 (including)
Konqueror Kde 2.2.2 (including) 2.2.2 (including)
Konqueror Kde 3.0 (including) 3.0 (including)
Konqueror Kde 3.0.1 (including) 3.0.1 (including)
Konqueror Kde 3.0.2 (including) 3.0.2 (including)
Konqueror Kde 3.0.3 (including) 3.0.3 (including)
Konqueror Kde 3.0.5 (including) 3.0.5 (including)
Konqueror Kde 3.0.5b (including) 3.0.5b (including)
Konqueror Kde 3.1 (including) 3.1 (including)
Konqueror Kde 3.1.1 (including) 3.1.1 (including)
Konqueror Kde 3.1.2 (including) 3.1.2 (including)
Konqueror Kde 3.1.3 (including) 3.1.3 (including)
Konqueror Kde 3.1.4 (including) 3.1.4 (including)
Konqueror Kde 3.1.5 (including) 3.1.5 (including)
Konqueror Kde 3.2.1 (including) 3.2.1 (including)
Konqueror Kde 3.2.3 (including) 3.2.3 (including)
Ie Microsoft 6.0-sp1 (including) 6.0-sp1 (including)
Ie Microsoft 6.0-sp2 (including) 6.0-sp2 (including)
Internet_explorer Microsoft 6.0 (including) 6.0 (including)
Firefox Mozilla 0.9.2 (including) 0.9.2 (including)

References