For more information on the Java security model see Sun's Java documentation, particularly the Applet Security FAQ referenced above. Microsoft provides similar documentation in its Java Security Overview and a corresponding FAQ.
Update to Konqueror version 3.3.2.
A patch for Konqueror 3.2.3 is available to correct this issue.
Disable Active Scripting and Java
At a minimum, disable Active scripting and Java within the web browser. Instructions for disabling Active scripting and Java can be found in the CERT/CC Malicious Web Scripts FAQ.
Filter by status: All Affected Not Affected Unknown
Filter by content: __ Additional information available
__ Sort by: Status Alphabetical
Updated: December 21, 2004
We have not received a statement from the vendor.
The vendor has not provided us with any further information regarding this vulnerability.
US-CERT has no additional comments at this time.
If you have feedback, comments, or additional information about this vulnerability, please send us email.
Group | Score | Vector
Base | |
Temporal | |
Environmental | |
This vulnerability was publicly reported by Waldo Bastian.
This document was written by Jeff Gennari.
CVE IDs: | CVE-2004-1145
Severity Metric: | 3.90
Date Public: | 2004-12-20
Date First Published: | 2005-01-05
Date Last Updated: | 2005-01-14 14:40 UTC
Document Revision: | 49