CVE-2004-1158
Published: 10 January 2005
Konqueror 3.x up to 3.2.2-6, and possibly other versions, allows remote attackers to spoof arbitrary web sites by injecting content from one window into a target window or tab whose name is known but resides in a different domain, as demonstrated using a pop-up window on a trusted web site, aka the "window injection" vulnerability.
Priority
Status
Package | Release | Status |
---|---|---|
kdelibs Launchpad, Ubuntu, Debian |
dapper |
Released
(3.5.2-0ubuntu18.5)
|
edgy |
Released
(3.5.5-0ubuntu3.5)
|
|
feisty |
Released
(3.5.6-0ubuntu14.1)
|
|
upstream |
Needs triage
|
|
gutsy |
Released
(3.5.7-1ubuntu14)
|
|
kdebase Launchpad, Ubuntu, Debian |
dapper |
Released
(3.5.2-0ubuntu27.1)
|
edgy |
Released
(3.5.5-0ubuntu3.5)
|
|
feisty |
Released
(3.5.6-0ubuntu20.2)
|
|
upstream |
Needs triage
|
|
gutsy |
Released
(3.5.7-1ubuntu23)
|