Описание
The XMLHttpRequest object in Qt before 4.8.4 enables http redirection to the file scheme, which allows man-in-the-middle attackers to force the read of arbitrary local files and possibly obtain sensitive information via a file: URL to a QML application.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 4:4.8.4+dfsg-0ubuntu2 |
| hardy | ignored | end of life |
| lucid | not-affected | code not present |
| oneiric | released | 4:4.7.4-0ubuntu8.3 |
| precise | released | 4:4.8.1-0ubuntu4.4 |
| quantal | released | 4:4.8.3+dfsg-0ubuntu3.1 |
| upstream | released | 4.8.4 |
Показывать по
4.3 Medium
CVSS2
Связанные уязвимости
The XMLHttpRequest object in Qt before 4.8.4 enables http redirection to the file scheme, which allows man-in-the-middle attackers to force the read of arbitrary local files and possibly obtain sensitive information via a file: URL to a QML application.
The XMLHttpRequest object in Qt before 4.8.4 enables http redirection to the file scheme, which allows man-in-the-middle attackers to force the read of arbitrary local files and possibly obtain sensitive information via a file: URL to a QML application.
The XMLHttpRequest object in Qt before 4.8.4 enables http redirection ...
The XMLHttpRequest object in Qt before 4.8.4 enables http redirection to the file scheme, which allows man-in-the-middle attackers to force the read of arbitrary local files and possibly obtain sensitive information via a file: URL to a QML application.
4.3 Medium
CVSS2