Lucene search

Ubuntu.comUB:CVE-2009-3015

HistoryAug 31, 2009 - 12:00 a.m.

CVE-2009-3015

2009-08-3100:00:00

ubuntu.com

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

EPSS

0.002

Percentile

52.7%

JSON

QtWeb 3.0 Builds 001 and 003 does not properly block javascript: and data:
URIs in Refresh and Location headers in HTTP responses, which allows remote
attackers to conduct cross-site scripting (XSS) attacks via vectors related
to (1) injecting a Refresh header that contains a javascript: URI, (2)
entering a javascript: URI when specifying the content of a Refresh header,
(3) injecting a Refresh header that contains JavaScript sequences in a
data:text/html URI, (4) entering a data:text/html URI with JavaScript
sequences when specifying the content of a Refresh header, (5) injecting a
Location header that contains JavaScript sequences in a data:text/html URI,
or (6) entering a data:text/html URI with JavaScript sequences when
specifying the content of a Location header.

Notes

Author	Note
mdeslaur	debian says: This is a web site issue (open redirector), not a browser problem.

References

launchpad.net/bugs/cve/CVE-2009-3015

nvd.nist.gov/vuln/detail/CVE-2009-3015

security-tracker.debian.org/tracker/CVE-2009-3015

www.cve.org/CVERecord?id=CVE-2009-3015

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

EPSS

0.002

Percentile

52.7%

JSON

Related for UB:CVE-2009-3015