Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2004-1158

Опубликовано: 10 янв. 2005
Источник: nvd
CVSS2: 7.5
EPSS Низкий

Описание

Konqueror 3.x up to 3.2.2-6, and possibly other versions, allows remote attackers to spoof arbitrary web sites by injecting content from one window into a target window or tab whose name is known but resides in a different domain, as demonstrated using a pop-up window on a trusted web site, aka the "window injection" vulnerability.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:kde:konqueror:2.1.1:*:*:*:*:*:*:*
cpe:2.3:a:kde:konqueror:2.1.2:*:*:*:*:*:*:*
cpe:2.3:a:kde:konqueror:2.2.1:*:*:*:*:*:*:*
cpe:2.3:a:kde:konqueror:2.2.2:*:*:*:*:*:*:*
cpe:2.3:a:kde:konqueror:3.0:*:*:*:*:*:*:*
cpe:2.3:a:kde:konqueror:3.0.1:*:*:*:*:*:*:*
cpe:2.3:a:kde:konqueror:3.0.2:*:*:*:*:*:*:*
cpe:2.3:a:kde:konqueror:3.0.3:*:*:*:*:*:*:*
cpe:2.3:a:kde:konqueror:3.0.5:*:*:*:*:*:*:*
cpe:2.3:a:kde:konqueror:3.0.5b:*:*:*:*:*:*:*
cpe:2.3:a:kde:konqueror:3.1:*:*:*:*:*:*:*
cpe:2.3:a:kde:konqueror:3.1.1:*:*:*:*:*:*:*
cpe:2.3:a:kde:konqueror:3.1.2:*:*:*:*:*:*:*
cpe:2.3:a:kde:konqueror:3.1.3:*:*:*:*:*:*:*
cpe:2.3:a:kde:konqueror:3.1.4:*:*:*:*:*:*:*
cpe:2.3:a:kde:konqueror:3.1.5:*:*:*:*:*:*:*
cpe:2.3:a:kde:konqueror:3.2.1:*:*:*:*:*:*:*
cpe:2.3:a:kde:konqueror:3.2.2.6:*:*:*:*:*:*:*
cpe:2.3:a:kde:konqueror:3.2.3:*:*:*:*:*:*:*
cpe:2.3:a:kde:konqueror:3.3:*:*:*:*:*:*:*
cpe:2.3:a:kde:konqueror:3.3.1:*:*:*:*:*:*:*
cpe:2.3:a:kde:konqueror:3.3.2:*:*:*:*:*:*:*
Конфигурация 2

Одно из

cpe:2.3:o:mandrakesoft:mandrake_linux:10.0:*:*:*:*:*:*:*
cpe:2.3:o:mandrakesoft:mandrake_linux:10.0:*:amd64:*:*:*:*:*
cpe:2.3:o:mandrakesoft:mandrake_linux:10.1:*:*:*:*:*:*:*
cpe:2.3:o:mandrakesoft:mandrake_linux:10.1:*:x86_64:*:*:*:*:*
cpe:2.3:o:redhat:fedora_core:core_2.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:fedora_core:core_3.0:*:*:*:*:*:*:*

EPSS

Процентиль: 88%
0.03863
Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

ubuntu логотип

CVE-2004-1158

ubuntu
больше 20 лет назад

Konqueror 3.x up to 3.2.2-6, and possibly other versions, allows remote attackers to spoof arbitrary web sites by injecting content from one window into a target window or tab whose name is known but resides in a different domain, as demonstrated using a pop-up window on a trusted web site, aka the "window injection" vulnerability.

redhat логотип

CVE-2004-1158

redhat
больше 20 лет назад

Konqueror 3.x up to 3.2.2-6, and possibly other versions, allows remote attackers to spoof arbitrary web sites by injecting content from one window into a target window or tab whose name is known but resides in a different domain, as demonstrated using a pop-up window on a trusted web site, aka the "window injection" vulnerability.

debian логотип

CVE-2004-1158

debian
больше 20 лет назад

Konqueror 3.x up to 3.2.2-6, and possibly other versions, allows remot ...

github логотип

GHSA-8m3g-xh55-wc3f

github
больше 3 лет назад

Konqueror 3.x up to 3.2.2-6, and possibly other versions, allows remote attackers to spoof arbitrary web sites by injecting content from one window into a target window or tab whose name is known but resides in a different domain, as demonstrated using a pop-up window on a trusted web site, aka the "window injection" vulnerability.

fstec логотип

BDU:2015-06212

fstec
больше 20 лет назад

Уязвимости операционной системы Red Hat Enterprise Linux, позволяющие удаленному злоумышленнику нарушить конфиденциальность, целостность и доступность защищаемой информации

EPSS

Процентиль: 88%
0.03863
Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other