MitreCVELIST:CVE-2004-1145CVE-2004-1145
Multiple vulnerabilities in Konqueror in KDE 3.3.1 and earlier (1) allow access to restricted Java classes via JavaScript and (2) do not properly restrict access to certain Java classes from the Java applet, which allows remote attackers to bypass sandbox restrictions and read or write arbitrary files.
References
marc.info/?l=bugtraq&m=110356286722875&w=2
secunia.com/advisories/13586
www.gentoo.org/security/en/glsa/glsa-200501-16.xml
www.heise.de/security/dienste/browsercheck/tests/java.shtml
www.kb.cert.org/vuls/id/420222
www.kde.org/info/security/advisory-20041220-1.txt
www.mandriva.com/security/advisories?name=MDKSA-2004:154
www.redhat.com/support/errata/RHSA-2005-065.html
exchange.xforce.ibmcloud.com/vulnerabilities/18596
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10173
Related
