Description
Konqueror in KDE 3.1.3 and earlier (kdelibs) allows remote attackers to bypass intended cookie access restrictions on a web application via "%2e%2e" (encoded dot dot) directory traversal sequences in a URL, which causes Konqueror to send the cookie outside the specified URL subsets, e.g. to a vulnerable application that runs on the same server as the target application.
Product(s):
- KDE Konqueror 2.1.1
- KDE Konqueror 2.2.2
- KDE Konqueror 3.0.1
- KDE Konqueror 3.0.2
- KDE Konqueror 3.0.3
- KDE Konqueror 3.0.5
- KDE Konqueror 3.0
- KDE Konqueror 3.1.1
- KDE Konqueror 3.1.2
- KDE Konqueror 3.1
- KDE Konqueror Embedded 0.1
Question to Ask Vendors:
- Can you confirm whether your systems are affected by CVE-2003-0592, and if so, what steps are you currently taking to mitigate this vulnerability?
- What is your estimated timeline for fully resolving CVE-2003-0592 in your products or services, and how will you communicate updates on this issue to us as your customer?
Recommended Actions:
- Check out the advisory links provided below.