CVE-2004-0411

Vulnerability Description

The URI handlers in Konqueror for KDE 3.2.2 and earlier do not properly filter "-" characters that begin a hostname in a (1) telnet, (2) rlogin, (3) ssh, or (4) mailto URI, which allows remote attackers to manipulate the options that are passed to the associated programs, possibly to read arbitrary files or execute arbitrary code.

CVSS Score

Affected Products

Related Weaknesses (CWE)

References

• http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000843Broken Link
• http://marc.info/?l=bugtraq&m=108481412427344&w=2Mailing ListThird Party Advisory
• http://secunia.com/advisories/11602Broken Link
• http://security.gentoo.org/glsa/glsa-200405-11.xmlThird Party Advisory
• http://www.ciac.org/ciac/bulletins/o-146.shtmlBroken Link
• http://www.debian.org/security/2004/dsa-518Third Party Advisory
• http://www.kde.org/info/security/advisory-20040517-1.txtPatchVendor Advisory
• http://www.novell.com/linux/security/advisories/2004_14_kdelibs.htmlBroken Link
• http://www.osvdb.org/6107Broken Link
• http://www.redhat.com/support/errata/RHSA-2004-222.htmlBroken Link
• http://www.securityfocus.com/advisories/6717Broken LinkThird Party AdvisoryVDB Entry
• http://www.securityfocus.com/advisories/6743Broken LinkThird Party AdvisoryVDB Entry
• http://www.securityfocus.com/archive/1/363225Broken LinkThird Party AdvisoryVDB Entry
• http://www.securityfocus.com/bid/10358Broken LinkThird Party AdvisoryVDB Entry
• http://www.slackware.org/security/viewer.php?l=slackware-security&y=2004&m=slackBroken Link