CVE-2003-0459

🗓️ 27 Aug 2003 04:00:00Reported by [email protected]Type

KDE Konqueror fails to remove credentials from URLs, risking credential theft via HTTP-Referer.

Reporter	Title	Published	Views	Family All 25
BDU FSTEC	The vulnerability of the Red Hat Linux operating system allows a remote attacker to compromise the confidentiality of protected information.	28 Apr 201500:00	–	bdu_fstec
BDU FSTEC	The vulnerability of the Red Hat Linux operating system allows a remote attacker to compromise the confidentiality of protected information.	28 Apr 201500:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities of the Red Hat Linux operating system, which allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information	28 Apr 201500:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities of the Red Hat Linux operating system, which allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information	28 Apr 201500:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities of the Red Hat Linux operating system, which allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information	28 Apr 201500:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities of the Red Hat Linux operating system, which allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information	28 Apr 201500:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities of the Red Hat Linux operating system, which allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information	28 Apr 201500:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities of the Red Hat Linux operating system, which allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information	28 Apr 201500:00	–	bdu_fstec
CVE	CAN-2003-0459	6 Aug 202410:29	–	cve
CVE	CVE-2003-0459	1 Aug 200304:00	–	cve

NVD

Node

kde konquerorMatch2.1.1

kde konquerorMatch2.2.2

kde konquerorMatch3.0

kde konquerorMatch3.0.1

kde konquerorMatch3.0.2

kde konquerorMatch3.0.3

kde konquerorMatch3.0.5

kde konquerorMatch3.1

kde konquerorMatch3.1.1

kde konquerorMatch3.1.2

kde konqueror_embeddedMatch0.1

redhat analog_real-time_synthesizerMatch2.1.1-5i386

redhat analog_real-time_synthesizerMatch2.2-11i386

redhat analog_real-time_synthesizerMatch2.2-11ia64

redhat kdebaseMatch3.0.3-13i386

redhat kdebaseMatch3.0.3-13i386_dev

redhat kdelibsMatch2.1.1-5i386

redhat kdelibsMatch2.2-11i386

redhat kdelibsMatch2.2-11ia64

redhat kdelibsMatch3.0.0-10i386

redhat kdelibsMatch3.1-10i386

redhat kdelibs_develMatch2.1.1-5i386_dev

redhat kdelibs_develMatch2.2-11i386_dev

redhat kdelibs_develMatch2.2-11ia64_dev

redhat kdelibs_develMatch3.0.0-10i386_dev

redhat kdelibs_develMatch3.0.3-8i386_dev

redhat kdelibs_develMatch3.1-10i386_dev

redhat kdelibs_soundMatch2.1.1-5i386_sound

redhat kdelibs_soundMatch2.2-11i386_sound

redhat kdelibs_soundMatch2.2-11ia64_sound

redhat kdelibs_sound_develMatch2.1.1-5i386_sound_dev

redhat kdelibs_sound_develMatch2.2-11i386_sound_dev

redhat kdelibs_sound_develMatch2.2-11ia64_sound_dev

Source	Link
kde	www.kde.org/info/security/advisory-20030729-1.txt
redhat	www.redhat.com/support/errata/RHSA-2003-236.html
redhat	www.redhat.com/support/errata/RHSA-2003-235.html
mandriva	www.mandriva.com/security/advisories
lists	www.lists.grok.org.uk/pipermail/full-disclosure/2003-July/007300.html
oval	www.oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A411
marc	www.marc.info/
debian	www.debian.org/security/2003/dsa-361
distro	www.distro.conectiva.com.br/atualizacoes/
turbolinux	www.turbolinux.com/security/TLSA-2003-45.txt

16 Apr 2026 00:27Current

6.7Medium risk

Vulners AI Score6.7

CVSS 25

EPSS0.01525