CVE-2004-1145
CVE-2004-1145
Multiple vulnerabilities in Konqueror in KDE 3.3.1 and earlier (1) allow access to restricted Java classes via JavaScript and (2) do not properly restrict access to certain Java classes from the Java applet, which allows remote attackers to bypass sandbox restrictions and read or write arbitrary files.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://marc.info/?l=bugtraq&m=110356286722875&w=2http://secunia.com/advisories/13586https://exchange.xforce.ibmcloud.com/vulnerabilities/18596https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10173http://www.gentoo.org/security/en/glsa/glsa-200501-16.xmlhttp://www.heise.de/security/dienste/browsercheck/tests/java.shtmlhttp://www.kb.cert.org/vuls/id/420222http://www.kde.org/info/security/advisory-20041220-1.txthttp://www.mandriva.com/security/advisories?name=MDKSA-2004:154http://www.redhat.com/support/errata/RHSA-2005-065.html