Vulnerability CVE-2007-3820: Information

Description

konqueror/konq_combo.cc in Konqueror 3.5.7 allows remote attackers to spoof the data: URI scheme in the address bar via a long URI with trailing whitespace, which prevents the beginning of the URI from being displayed.

Severity: LOW (2.6)

URL: https://nvd.nist.gov/vuln/detail/CVE-2007-3820
Published: July 17, 2007
Modified: Oct. 16, 2018

References to Advisories, Solutions, and Tools

Hyperlink
Resource
http://alt.swiecki.net/oper1.html
    26091
    • Vendor Advisory
    http://www.kde.org/info/security/advisory-20070816-1.txt
      FEDORA-2007-2361
        FEDORA-2007-716
          MDKSA-2007:176
            RHSA-2007:0905
              RHSA-2007:0909
                USN-502-1
                  24912
                    24918
                      1018396
                        26612
                          26720
                            27089
                              27106
                                27108
                                  27090
                                    27096
                                      2905
                                        ADV-2007-2538
                                          37242
                                            opera-konqueror-addressbar-spoofing(35430)
                                              oval:org.mitre.oval:def:10345
                                                20070714 Re: Opera/Konqueror: data: URL scheme address bar spoofing
                                                  20070713 Opera/Konqueror: data: URL scheme address bar spoofing

                                                      1. Configuration 1

                                                        cpe:2.3:a:kde:konqueror:3.5.7:*:*:*:*:*:*:*
                                                    VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
                                                    Version: v24.5.1
                                                    Back to top