CVE-2002-1152

EPSS 1.43%
Veröffentlicht 11.10.2002 04:00:00
Zuletzt bearbeitet 03.04.2025 01:03:51
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

Konqueror in KDE 3.0 through 3.0.2 does not properly detect the "secure" flag in an HTTP cookie, which could cause Konqueror to send the cookie across an unencrypted channel, which could allow remote attackers to steal the cookie via sniffing.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 8

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Kde ≫ Kde Version3.0

Kde ≫ Kde Version3.0.1

Kde ≫ Kde Version3.0.2

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	1.43%	0.801

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

http://www.redhat.com/support/errata/RHSA-2002-220.html

http://marc.info/?l=bugtraq&m=103175827225044&w=2

http://www.iss.net/security_center/static/10083.php

Vendor Advisory

http://www.kde.org/info/security/advisory-20020908-1.txt

http://www.securityfocus.com/bid/5691

Patch

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2002-1152

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2002-1152

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2002-1152

EUVD