Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2007-3143
HistoryJun 11, 2007 - 12:00 a.m.

CVE-2007-3143

2007-06-1100:00:00
ubuntu.com
ubuntu.com
22

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

EPSS

0.03

Percentile

91.1%

JSON

Visual truncation vulnerability in Konqueror 3.5.5 allows remote attackers
to spoof the address bar and possibly conduct phishing attacks via a long
hostname, which is truncated after a certain number of characters, as
demonstrated by a phishing attack using HTTP Basic Authentication.

Notes

Author Note
jdstrand CVE references konqueror 3.5.5, but securityfocus references opera. securityfocus says that other browsers may be affected, and there is test exploit code. Need to verify on konqueror.
kees this may already be solved from CVE-2007-3820, CVE-2007-4224, and CVE-2007-4225.
OSVersionArchitecturePackageVersionFilename
ubuntu6.06noarchopera< 9.23-20070809.6dapper1UNKNOWN
ubuntu6.10noarchopera< 9.23-20070809.6edgy1UNKNOWN
ubuntu7.04noarchopera< 9.23-20070809.6feisty1UNKNOWN
ubuntu7.10noarchopera< 9.25-20071214.6gutsy1UNKNOWN

Related

openvas 26
nessus 21
freebsd 1
fedora 7
ubuntu 1
slackware 1
oraclelinux 2
redhat 2
centos 2
ubuntucve 3
prion 4
cvelist 4
cve 4
nvd 4
veracode 2
redhatcve 1
openvas
openvas
Fedora Update for kdelibs FEDORA-2007-1699
2009-02-27 00:00:00
FreeBSD Ports: kdebase3
2008-09-04 00:00:00
Fedora Update for kdebase FEDORA-2007-1700
2009-02-27 00:00:00
nessus
nessus
FreeBSD : konquerer -- address bar spoofing (14ad2a28-66d2-11dc-b25f-02e0185f8d72)
2007-09-24 00:00:00
Ubuntu 6.06 LTS / 6.10 / 7.04 : kdebase, kdelibs vulnerabilities (USN-502-1)
2007-11-10 00:00:00
Mandrake Linux Security Advisory : konqueror (MDKSA-2007:176)
2007-09-07 00:00:00
freebsd
freebsd
konquerer -- address bar spoofing
2007-09-14 00:00:00
fedora
fedora
[SECURITY] Fedora 7 Update: kdelibs-3.5.7-20.fc7
2007-08-20 16:03:39
[SECURITY] Fedora 7 Update: kdebase-3.5.7-13.fc7
2007-08-20 16:04:15
[SECURITY] Fedora 7 Update: kdebase-3.5.7-13.1.fc7
2007-10-04 18:43:48
ubuntu
ubuntu
KDE vulnerabilities
2007-08-26 00:00:00
slackware
slackware
[slackware-security] kdebase, kdelibs
2007-09-22 00:42:42
oraclelinux
oraclelinux
Moderate: kdebase security update
2007-10-08 00:00:00
Moderate: kdelibs security update
2007-10-08 00:00:00
redhat
redhat
(RHSA-2007:0905) Moderate: kdebase security update
2007-10-08 00:00:00
(RHSA-2007:0909) Moderate: kdelibs security update
2007-10-08 00:00:00
centos
centos
kdebase security update
2007-10-08 18:50:43
kdelibs security update
2007-10-08 18:49:50
ubuntucve
ubuntucve
CVE-2007-4224
2007-08-08 00:00:00
CVE-2007-3820
2007-07-17 00:00:00
CVE-2007-4225
2007-06-07 00:00:00
prion
prion
Code injection
2007-08-08 21:17:00
Code injection
2007-07-17 01:30:00
Design/Logic Flaw
2007-08-08 21:17:00
cvelist
cvelist
CVE-2007-4224
2007-08-08 21:00:00
CVE-2007-3820
2007-07-17 01:00:00
CVE-2007-4225
2007-08-08 21:00:00
cve
cve
CVE-2007-4224
2007-08-08 21:17:00
CVE-2007-3820
2007-07-17 01:30:00
CVE-2007-4225
2007-08-08 21:17:00
nvd
nvd
CVE-2007-3820
2007-07-17 01:30:00
CVE-2007-4224
2007-08-08 21:17:00
CVE-2007-4225
2007-08-08 21:17:00
veracode
veracode
Phishing Attacks
2020-04-10 00:18:45
Phishing Attacks
2020-04-10 00:18:45
redhatcve
redhatcve
CVE-2007-4225
2015-10-30 09:43:06

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

EPSS

0.03

Percentile

91.1%

JSON
Related for UB:CVE-2007-3143
openvas26nessus21freebsd1fedora7ubuntu1slackware1oraclelinux2redhat2centos2ubuntucve3prion4cvelist4cve4nvd4veracode2redhatcve1