FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

konquerer -- address bar spoofing

Affected packages
kdebase < 3.5.7_3
kdelibs < 3.5.7_2

Details

VuXML ID 14ad2a28-66d2-11dc-b25f-02e0185f8d72
Discovery 2007-09-14
Entry 2007-09-19

The KDE development team reports:

The Konqueror address bar is vulnerable to spoofing attacks that are based on embedding white spaces in the url. In addition the address bar could be tricked to show an URL which it is intending to visit for a short amount of time instead of the current URL.

[source]

References

CVE Name CVE-2007-3820
CVE Name CVE-2007-4224
CVE Name CVE-2007-4225
URL http://www.kde.org/info/security/advisory-20070914-1.txt

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.