CVE-2004-1145
CVE-2004-1145
Multiple vulnerabilities in Konqueror in KDE 3.3.1 and earlier (1) allow access to restricted Java classes via JavaScript and (2) do not properly restrict access to certain Java classes from the Java applet, which allows remote attackers to bypass sandbox restrictions and read or write arbitrary files.
Productos afectados
n/a · n/a¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →Referencias
http://marc.info/?l=bugtraq&m=110356286722875&w=2http://secunia.com/advisories/13586https://exchange.xforce.ibmcloud.com/vulnerabilities/18596https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10173http://www.gentoo.org/security/en/glsa/glsa-200501-16.xmlhttp://www.heise.de/security/dienste/browsercheck/tests/java.shtmlhttp://www.kb.cert.org/vuls/id/420222http://www.kde.org/info/security/advisory-20041220-1.txthttp://www.mandriva.com/security/advisories?name=MDKSA-2004:154http://www.redhat.com/support/errata/RHSA-2005-065.html