Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2004-1165
HistoryJan 10, 2005 - 5:00 a.m.

CVE-2004-1165

2005-01-1005:00:00
NVD-CWE-Other
[email protected]
web.nvd.nist.gov
36
konqueror
cve-2004-1165
ftp commands
remote attackers
security vulnerability

7.2 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.811 High

EPSS

Percentile

98.3%

JSON

Konqueror 3.3.1 allows remote attackers to execute arbitrary FTP commands via an ftp:// URL that contains a URL-encoded newline (“%0a”) before the FTP command, which causes the commands to be inserted into the resulting FTP session, as demonstrated using a PORT command.

Related

osv 1
openvas 6
ubuntucve 1
nessus 7
cvelist 1
freebsd 1
debian 2
gentoo 1
redhat 2
osv
osv
kdelibs - unsanitised input
2005-01-10 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200501-18 (konqueror)
2008-09-24 00:00:00
FreeBSD Ports: ja-kdelibs, kdelibs
2008-09-04 00:00:00
Debian: Security Advisory (DSA-631-1)
2008-01-17 00:00:00
ubuntucve
ubuntucve
CVE-2004-1165
2005-01-10 00:00:00
nessus
nessus
GLSA-200501-18 : KDE FTP KIOslave: Command injection
2005-02-14 00:00:00
Mandrake Linux Security Advisory : kdelibs (MDKSA-2004:160)
2005-01-02 00:00:00
FreeBSD : kdelibs3 -- konqueror FTP command injection vulnerability (832e9d75-5bfc-11d9-a9e7-0001020eed82)
2005-07-13 00:00:00
cvelist
cvelist
CVE-2004-1165
2004-12-10 05:00:00
freebsd
freebsd
kdelibs3 -- konqueror FTP command injection vulnerability
2004-12-01 00:00:00
debian
debian
[SECURITY] [DSA 631-1] New kdlibs packages fix arbitrary FTP command execution
2005-01-10 11:07:44
[SECURITY] [DSA 631-1] New kdlibs packages fix arbitrary FTP command execution
2005-01-10 00:00:00
gentoo
gentoo
KDE FTP KIOslave: Command injection
2005-01-11 00:00:00
redhat
redhat
(RHSA-2005:065) kdelibs security update
2005-02-15 00:00:00
(RHSA-2005:009) kdelibs, kdebase security update
2005-02-10 00:00:00

7.2 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.811 High

EPSS

Percentile

98.3%

JSON
Related for CVE-2004-1165
osv1openvas6ubuntucve1nessus7cvelist1freebsd1debian2gentoo1redhat2