Описание
Konqueror 3.1.3, 3.2.2, and possibly other versions does not properly prevent a frame in one domain from injecting content into a frame that belongs to another domain, which facilitates web site spoofing and other attacks, aka the frame injection vulnerability.
Konqueror 3.1.3, 3.2.2, and possibly other versions does not properly prevent a frame in one domain from injecting content into a frame that belongs to another domain, which facilitates web site spoofing and other attacks, aka the frame injection vulnerability.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2004-0721
- https://exchange.xforce.ibmcloud.com/vulnerabilities/1598
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11371
- http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000864
- http://marc.info/?l=bugtraq&m=109225538901170&w=2
- http://secunia.com/advisories/11978
- http://secunia.com/multiple_browsers_frame_injection_vulnerability_test
- http://security.gentoo.org/glsa/glsa-200408-13.xml
- http://www.kde.org/info/security/advisory-20040811-3.txt
EPSS
CVE ID
Связанные уязвимости
Konqueror 3.1.3, 3.2.2, and possibly other versions does not properly prevent a frame in one domain from injecting content into a frame that belongs to another domain, which facilitates web site spoofing and other attacks, aka the frame injection vulnerability.
Konqueror 3.1.3, 3.2.2, and possibly other versions does not properly prevent a frame in one domain from injecting content into a frame that belongs to another domain, which facilitates web site spoofing and other attacks, aka the frame injection vulnerability.
Konqueror 3.1.3, 3.2.2, and possibly other versions does not properly ...
EPSS