CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
AI Score
Confidence
Low
EPSS
Percentile
78.1%
Multiple vulnerabilities in Konqueror in KDE 3.3.1 and earlier (1) allow access to restricted Java classes via JavaScript and (2) do not properly restrict access to certain Java classes from the Java applet, which allows remote attackers to bypass sandbox restrictions and read or write arbitrary files.
Vendor | Product | Version | CPE |
---|---|---|---|
ethereal_group | ethereal | 0.9 | cpe:2.3:a:ethereal_group:ethereal:0.9:*:*:*:*:*:*:* |
ethereal_group | ethereal | 0.9.1 | cpe:2.3:a:ethereal_group:ethereal:0.9.1:*:*:*:*:*:*:* |
ethereal_group | ethereal | 0.9.2 | cpe:2.3:a:ethereal_group:ethereal:0.9.2:*:*:*:*:*:*:* |
ethereal_group | ethereal | 0.9.3 | cpe:2.3:a:ethereal_group:ethereal:0.9.3:*:*:*:*:*:*:* |
ethereal_group | ethereal | 0.9.4 | cpe:2.3:a:ethereal_group:ethereal:0.9.4:*:*:*:*:*:*:* |
ethereal_group | ethereal | 0.9.5 | cpe:2.3:a:ethereal_group:ethereal:0.9.5:*:*:*:*:*:*:* |
ethereal_group | ethereal | 0.9.6 | cpe:2.3:a:ethereal_group:ethereal:0.9.6:*:*:*:*:*:*:* |
ethereal_group | ethereal | 0.9.7 | cpe:2.3:a:ethereal_group:ethereal:0.9.7:*:*:*:*:*:*:* |
ethereal_group | ethereal | 0.9.8 | cpe:2.3:a:ethereal_group:ethereal:0.9.8:*:*:*:*:*:*:* |
ethereal_group | ethereal | 0.9.9 | cpe:2.3:a:ethereal_group:ethereal:0.9.9:*:*:*:*:*:*:* |
marc.info/?l=bugtraq&m=110356286722875&w=2
secunia.com/advisories/13586
www.gentoo.org/security/en/glsa/glsa-200501-16.xml
www.heise.de/security/dienste/browsercheck/tests/java.shtml
www.kb.cert.org/vuls/id/420222
www.kde.org/info/security/advisory-20041220-1.txt
www.mandriva.com/security/advisories?name=MDKSA-2004:154
www.redhat.com/support/errata/RHSA-2005-065.html
exchange.xforce.ibmcloud.com/vulnerabilities/18596
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10173