Konqueror 3.3.1 allows remote malicious users to execute arbitrary FTP commands via an ftp:// URL that contains a URL-encoded newline ("%0a") before the FTP command, which causes the commands to be inserted into the resulting FTP session, as demonstrated using a PORT command.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
kde kdelibs 3.1.4 |
||
kde kdelibs 3.1.5 |
||
kde kdelibs 3.2 |
||
kde kdelibs 3.2.1 |
||
kde kdelibs 3.1 |
||
kde kdelibs 3.2.2 |
||
kde konqueror 3.3.1 |
||
kde kdelibs 3.1.1 |
||
kde kdelibs 3.1.2 |
||
kde kdelibs 3.1.3 |