CVE-2003-0459

Current Description

KDE Konqueror for KDE 3.1.2 and earlier does not remove authentication credentials from URLs of the "user:password@host" form in the HTTP-Referer header, which could allow remote web sites to steal the credentials for pages that link to the sites.

Basic Data

PublishedAugust 27, 2003
Last ModifiedOctober 11, 2017
Assignercve@mitre.org
Data TypeCVE
Data FormatMITRE
Data Version4.0
Problem TypeNVD-CWE-Other
CVE Data Version4.0

Base Metric V2

CVSS 2 - Version2.0
CVSS 2 - Vector StringAV:N/AC:L/Au:N/C:P/I:N/A:N
CVSS 2 - Access VectorNETWORK
CVSS 2 - Access ComplexityLOW
CVSS 2 - AuthenticationNONE
CVSS 2 - Confidentiality ImpactPARTIAL
CVSS 2 - Availability ImpactNONE
CVSS 2 - Base Score5.0
SeverityMEDIUM
Exploitability Score10.0
Impact Score2.9
Obtain All Privilegefalse
Obtain User Privilegefalse
Obtain Other Privilegefalse

Base Metric V3

No data provided.

Configurations

  • OR - Configuration 1
    Cpe VersionPartVendorProductVersionUpdateEditionLanguageSW EditionTarget SWTarget HWOtherVersion Start IncludingVersion End IncludingVersion Start ExcludingVersion End Excluding
    2.3ApplicationKdeKonqueror2.1.1*******
    2.3ApplicationKdeKonqueror2.2.2*******
    2.3ApplicationKdeKonqueror3.0*******
    2.3ApplicationKdeKonqueror3.0.1*******
    2.3ApplicationKdeKonqueror3.0.2*******
    2.3ApplicationKdeKonqueror3.0.3*******
    2.3ApplicationKdeKonqueror3.0.5*******
    2.3ApplicationKdeKonqueror3.1*******
    2.3ApplicationKdeKonqueror3.1.1*******
    2.3ApplicationKdeKonqueror3.1.2*******
    2.3ApplicationKdeKonqueror Embedded0.1*******
    2.3ApplicationRedhatAnalog Real-time Synthesizer2.1.1-5*i386*****
    2.3ApplicationRedhatAnalog Real-time Synthesizer2.2-11*i386*****
    2.3ApplicationRedhatAnalog Real-time Synthesizer2.2-11*ia64*****
    2.3ApplicationRedhatKdebase3.0.3-13*i386*****
    2.3ApplicationRedhatKdebase3.0.3-13*i386_dev*****
    2.3ApplicationRedhatKdelibs2.1.1-5*i386*****
    2.3ApplicationRedhatKdelibs2.2-11*i386*****
    2.3ApplicationRedhatKdelibs2.2-11*ia64*****
    2.3ApplicationRedhatKdelibs3.0.0-10*i386*****
    2.3ApplicationRedhatKdelibs3.1-10*i386*****
    2.3ApplicationRedhatKdelibs Devel2.1.1-5*i386_dev*****
    2.3ApplicationRedhatKdelibs Devel2.2-11*i386_dev*****
    2.3ApplicationRedhatKdelibs Devel2.2-11*ia64_dev*****
    2.3ApplicationRedhatKdelibs Devel3.0.0-10*i386_dev*****
    2.3ApplicationRedhatKdelibs Devel3.0.3-8*i386_dev*****
    2.3ApplicationRedhatKdelibs Devel3.1-10*i386_dev*****
    2.3ApplicationRedhatKdelibs Sound2.1.1-5*i386_sound*****
    2.3ApplicationRedhatKdelibs Sound2.2-11*i386_sound*****
    2.3ApplicationRedhatKdelibs Sound2.2-11*ia64_sound*****
    2.3ApplicationRedhatKdelibs Sound Devel2.1.1-5*i386_sound_dev*****
    2.3ApplicationRedhatKdelibs Sound Devel2.2-11*i386_sound_dev*****
    2.3ApplicationRedhatKdelibs Sound Devel2.2-11*ia64_sound_dev*****

Vulnerable Software List

VendorProductVersions
Redhat Kdelibs Devel 2.1.1-5, 2.2-11, 3.0.0-10, 3.0.3-8, 3.1-10
Redhat Kdelibs Sound 2.1.1-5, 2.2-11
Redhat Kdelibs Sound Devel 2.1.1-5, 2.2-11
Redhat Analog Real-time Synthesizer 2.1.1-5, 2.2-11
Redhat Kdebase 3.0.3-13
Redhat Kdelibs 2.1.1-5, 2.2-11, 3.0.0-10, 3.1-10
Kde Konqueror 2.1.1, 2.2.2, 3.0, 3.0.1, 3.0.2, 3.0.3, 3.0.5, 3.1, 3.1.1, 3.1.2
Kde Konqueror Embedded 0.1

References

NameSourceURLTags
CLA-2003:747http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000747CONECTIVA
20030729 KDE Security Advisory: Konqueror Referrer Authentication Leakhttp://lists.grok.org.uk/pipermail/full-disclosure/2003-July/007300.htmlFULLDISC
20030802 [slackware-security] KDE packages updated (SSA:2003-213-01)http://marc.info/?l=bugtraq&m=105986238428061&w=2BUGTRAQ
DSA-361http://www.debian.org/security/2003/dsa-361DEBIAN
http://www.kde.org/info/security/advisory-20030729-1.txthttp://www.kde.org/info/security/advisory-20030729-1.txtCONFIRM
MDKSA-2003:079http://www.mandriva.com/security/advisories?name=MDKSA-2003:079MANDRAKE
RHSA-2003:235http://www.redhat.com/support/errata/RHSA-2003-235.htmlREDHATPatch Vendor Advisory
RHSA-2003:236http://www.redhat.com/support/errata/RHSA-2003-236.htmlREDHATPatch Vendor Advisory
TLSA-2003-45http://www.turbolinux.com/security/TLSA-2003-45.txtTURBO
oval:org.mitre.oval:def:411https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A411OVAL