11 matches found
SUSE CVE-2012-5624
The XMLHttpRequest object in Qt before 4.8.4 enables http redirection to the file scheme, which allows man-in-the-middle attackers to force the read of arbitrary local files and possibly obtain sensitive information via a file: URL to a QML application...
openSUSE Security Update : libqt4 (openSUSE-SU-2013:0157-1)
libqt4 received security fixes for : - XMLHttpRequest could redirect to a file: URL CVE-2012-5624, bnc793194 - Disable SSL compression by default to mitigate CRIME attack CVE-2012-4929 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...
openSUSE Security Update : libqt4 (openSUSE-SU-2013:0154-1)
libqt4 received a fix for a security issue : - avoid redirect to file url scheme in XMLHttpRequests bnc793194, CVE-2012-5624 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2013-11. T...
CVE-2012-5624
The XMLHttpRequest object in Qt before 4.8.4 enables http redirection to the file scheme, which allows man-in-the-middle attackers to force the read of arbitrary local files and possibly obtain sensitive information via a file: URL to a QML application...
CVE-2012-5624
The XMLHttpRequest object in Qt before 4.8.4 enables http redirection to the file scheme, which allows man-in-the-middle attackers to force the read of arbitrary local files and possibly obtain sensitive information via a file: URL to a QML application...
CVE-2012-5624
CVE-2012-5624 affects Qt 4.x where the XMLHttpRequest implementation could be redirected from http to the file: URL scheme, enabling a man‑in‑the‑middle attacker to trigger reads of local files in a QML application. The root cause is improper handling of redirects in XMLHttpRequest, allowing acce...
Ubuntu Update for qt4-x11 USN-1723-1
Check for the Version of qt4-x11 OpenVAS Vulnerability Test $Id: gbubuntuUSN17231.nasl 7958 2017-12-01 06:47:47Z santu $ Ubuntu Update for qt4-x11 USN-1723-1 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software...
Ubuntu 10.04 LTS / 11.10 / 12.04 LTS / 12.10 : qt4-x11 vulnerabilities (USN-1723-1)
Richard J. Moore and Peter Hartmann discovered that Qt allowed redirecting requests from http to file schemes. If an attacker were able to perform a man-in-the-middle attack, this flaw could be exploited to view sensitive information. This issue only affected Ubuntu 11.10, Ubuntu 12.04 LTS, and...
Ubuntu: Security Advisory (USN-1723-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for qt FEDORA-2012-19759
Check for the Version of qt OpenVAS Vulnerability Test Fedora Update for qt FEDORA-2012-19759 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of th...
Fedora 18 : qt-4.8.4-1.fc18 (2012-19673)
New bugfix release, see also: http://blog.qt.digia.com/blog/2012/11/29/qt-4-8-4-released/ This release also includes a security fix for: QML XmlHttpRequest Insecure Redirection http://lists.qt-project.org/pipermail/announce/2012-November/000014.ht ml Note that Tenable Network Security has extract...