Описание
kioslave/http/http.cpp in KIO in kdelibs 4.10.3 and earlier allows attackers to discover credentials via a crafted request that triggers an "internal server error," which includes the username and password in an error message.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 4:4.10.3-0ubuntu3 |
| lucid | ignored | end of life |
| precise | released | 4:4.8.5-0ubuntu0.2 |
| quantal | released | 4:4.9.5-0ubuntu0.2 |
| raring | released | 4:4.10.2-0ubuntu2.2 |
| upstream | needs-triage |
Показывать по
EPSS
5 Medium
CVSS2
Связанные уязвимости
kioslave/http/http.cpp in KIO in kdelibs 4.10.3 and earlier allows attackers to discover credentials via a crafted request that triggers an "internal server error," which includes the username and password in an error message.
kioslave/http/http.cpp in KIO in kdelibs 4.10.3 and earlier allows attackers to discover credentials via a crafted request that triggers an "internal server error," which includes the username and password in an error message.
kioslave/http/http.cpp in KIO in kdelibs 4.10.3 and earlier allows att ...
kioslave/http/http.cpp in KIO in kdelibs 4.10.3 and earlier allows attackers to discover credentials via a crafted request that triggers an "internal server error," which includes the username and password in an error message.
Уязвимости операционной системы Gentoo Linux, позволяющие удаленному злоумышленнику нарушить конфиденциальность защищаемой информации
EPSS
5 Medium
CVSS2