Lucene search
K

8 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 6:12 a.m.3 views

SUSE CVE-2007-1564

The FTP protocol implementation in Konqueror 3.5.5 allows remote servers to force the client to connect to other servers, perform a proxied port scan, or obtain sensitive information by specifying an alternate server address in an FTP PASV response...

6.8CVSS6.7AI score0.03778EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.37 views

Scientific Linux Security Update : kdelibs on SL5.x, SL4.x i386/x86_64

Two cross-site-scripting flaws were found in the way Konqueror processes certain HTML content. This could result in a malicious attacker presenting misleading content to an unsuspecting user. CVE-2007-0242, CVE-2007-0537 A flaw was found in KDE JavaScript implementation. A web page containing...

6.8CVSS5.5AI score0.08185EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2007/12/13 12:0 a.m.33 views

SuSE 10 Security Update : kdelibs3 (ZYPP Patch Number 3053)

A bug in KHTML could be exploited to conduct cross site scripting XSS attacks. CVE-2007-0537 Another bug allowed attackers to abuse the FTP passive mode for portscans. CVE-2007-1564 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc...

6.8CVSS5AI score0.03778EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2007/12/13 12:0 a.m.31 views

SuSE 10 Security Update : kdelibs3,kdelibs3-devel,CVE-2007-1564 (ZYPP Patch Number 3988)

A bug in konqueror allowed attackers to abuse the FTP passive mode for portscans. CVE-2007-1564 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid29483;...

6.8CVSS5.3AI score0.03778EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2007/11/10 12:0 a.m.30 views

Ubuntu 5.10 / 6.06 LTS / 6.10 : kdelibs vulnerabilities (USN-447-1)

It was discovered that Konqueror did not correctly handle iframes from JavaScript. If a user were tricked into visiting a malicious website, Konqueror could crash, resulting in a denial of service. CVE-2007-1308 A flaw was discovered in how Konqueror handled PASV FTP responses. If a user were...

7.8CVSS5.4AI score0.08185EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2007/10/08 8:11 a.m.39 views

Moderate: Red Hat Security Advisory: kdelibs security update

Updated kdelibs packages that resolve several security flaws are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The kdelibs package provides libraries for the K Desktop Environment KDE. Two...

6.8CVSS5.8AI score0.08185EPSS
Exploits1References7
Oracle linux
Oracle linux
added 2007/10/08 12:0 a.m.42 views

Moderate: kdelibs security update

3.5.4-13.el5.0.1 - Remove Version branding - Maximum rpm trademark logos removed pics/crystalsvg/-mime-rpm 3.5.4-13.el5 - Resolves: 293571 CVE-2007-0537 Konqueror improper HTML comment rendering CVE-2007-1564 FTP protocol PASV design flaw affects konqueror 3.5.4-12.el5 - resolves: 293421,...

6.8CVSS2.3AI score0.08185EPSS
Exploits1
CVE
CVE
added 2007/03/21 7:0 p.m.53 views

CVE-2007-1564

CVE-2007-1564 concerns Konqueror 3.5.5’s FTP protocol handling. The vulnerability arises when a remote FTP server supplies an overly crafted PASV response, which can force the Konqueror client to connect to arbitrary servers. This behavior could enable a nearby attacker to perform a proxied port-...

6.8CVSS5.8AI score0.03778EPSS
Exploits0References13Affected Software1
Rows per page
Query Builder