Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kde konqueror vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2003-0592
Konqueror in KDE 3.1.3 and previous versions (kdelibs) allows remote malicious users to bypass intended cookie access restrictions on a web application via "%2e%2e" (encoded dot dot) directory traversal sequences in a URL, which causes Konqueror to send the cookie outsi...
Kde Konqueror 3.1.2
Kde Konqueror 3.0.2
Kde Konqueror 2.2.2
Kde Konqueror 3.1
Kde Konqueror 3.0
Kde Konqueror 3.0.1
Kde Konqueror 3.0.3
Kde Konqueror 3.1.1
Kde Konqueror Embedded 0.1
Kde Konqueror 2.1.1
Kde Konqueror 3.0.5
NA
CVE-2003-1478
Konqueror in KDE 3.0.3 allows remote malicious users to cause a denial of service (core dump) via a web page that begins with a "xFFxFE" byte sequence and a large number of CRLF sequences, as demonstrated using freeze.htm.
Kde Konqueror 3.0.3
1 EDB exploit
NA
CVE-2003-0459
KDE Konqueror for KDE 3.1.2 and previous versions does not remove authentication credentials from URLs of the "user:password@host" form in the HTTP-Referer header, which could allow remote web sites to steal the credentials for pages that link to the sites.
Redhat Kdelibs 3.0.0-10
Kde Konqueror 3.1.2
Redhat Kdelibs 2.2-11
Kde Konqueror 3.0.2
Redhat Kdelibs Devel 2.2-11
Redhat Kdelibs Sound Devel 2.2-11
Redhat Analog Real-time Synthesizer 2.2-11
Kde Konqueror 2.2.2
Kde Konqueror 3.1
Kde Konqueror 3.0
Redhat Kdelibs Devel 3.1-10
Kde Konqueror 3.0.1
Kde Konqueror 3.0.3
Redhat Kdelibs Sound 2.2-11
Redhat Kdebase 3.0.3-13
Kde Konqueror 3.1.1
Redhat Kdelibs Devel 3.0.0-10
Redhat Kdelibs 3.1-10
Redhat Kdelibs Devel 2.1.1-5
Redhat Kdelibs Sound 2.1.1-5
Redhat Kdelibs 2.1.1-5
Redhat Kdelibs Sound Devel 2.1.1-5
NA
CVE-2003-0370
Konqueror Embedded and KDE 2.2.2 and previous versions does not validate the Common Name (CN) field for X.509 Certificates, which could allow remote malicious users to spoof certificates via a man-in-the-middle attack.
Apple Safari 1.0
Kde Konqueror Embedded 0.1
Redhat Linux 7.2
Turbolinux Turbolinux Server 7.0
Turbolinux Turbolinux Workstation 7.0
Turbolinux Turbolinux Workstation 8.0
Kde Kde
Turbolinux Turbolinux Server 8.0
Redhat Linux 7.1
NA
CVE-2003-0355
Safari 1.0 Beta 2 (v73) and previous versions does not validate the Common Name (CN) field for X.509 Certificates, which could allow remote malicious users to spoof certificates.
Apple Safari 1.0
Kde Konqueror Embedded
NA
CVE-2002-2333
Buffer overflow in konqueror in KDE 2.1 up to and including 3.0 and 3.0.2 allows remote malicious users to cause a denial of service (crash) via an IMG tag with large width and height attributes.
Kde Kde 2.2.1
Kde Kde 2.1.2
Kde Kde 3.0.2
Kde Kde 2.2
Kde Kde 2.1
Kde Kde 3.0
Kde Kde 2.1.1
Kde Kde 2.2.2
NA
CVE-2002-1151
The cross-site scripting protection for Konqueror in KDE 2.2.2 and 3.0 up to and including 3.0.3 does not properly initialize the domains on sub-frames and sub-iframes, which can allow remote malicious users to execute script and steal cookies from subframes that are in other dom...
Kde Konqueror 3.0.2
Kde Konqueror 2.2.2
Kde Konqueror 3.0
Kde Konqueror 3.0.1
Kde Konqueror 3.0.3
Kde Kde 3.0.2
Kde Kde 3.0.1
Kde Kde 3.0
Kde Kde 2.2.2
Kde Kde 3.0.3
NA
CVE-2002-1152
Konqueror in KDE 3.0 up to and including 3.0.2 does not properly detect the "secure" flag in an HTTP cookie, which could cause Konqueror to send the cookie across an unencrypted channel, which could allow remote malicious users to steal the cookie via sniffing.
Kde Kde 3.0.2
Kde Kde 3.0.1
Kde Kde 3.0
NA
CVE-2002-0970
The SSL capability for Konqueror in KDE 3.0.2 and previous versions does not verify the Basic Constraints for an intermediate CA-signed certificate, which allows remote malicious users to spoof the certificates of trusted sites via a man-in-the-middle attack.
Kde Konqueror 3.0.2
Kde Konqueror 2.2.2
Kde Konqueror 3.0
Kde Konqueror 3.0.1
Kde Kde 3.0.2
Kde Kde 3.0.1
Kde Kde 3.0
Kde Kde 2.2.2
NA
CVE-2001-0955
Buffer overflow in fbglyph.c in XFree86 prior to 4.2.0, related to glyph clipping for large origins, allows malicious users to cause a denial of service and possibly gain privileges via a large number of characters, possibly through the web page search form of KDE Konqueror or fr...
Xfree86 Project X11r6 4.0.3
Xfree86 Project X11r6 4.0
Xfree86 Project X11r6 4.0.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5