7.5

CVE-2004-0746

Konqueror in KDE 3.2.3 and earlier allows web sites to set cookies for country-specific top-level domains, such as .ltd.uk, .plc.uk and .firm.in, which could allow remote attackers to perform a session fixation attack and hijack a user's HTTP session.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)
KdeKonqueror Version3.0
KdeKonqueror Version3.0.1
KdeKonqueror Version3.0.2
KdeKonqueror Version3.0.3
KdeKonqueror Version3.0.5
KdeKonqueror Version3.0.5b
KdeKonqueror Version3.1
KdeKonqueror Version3.1.1
KdeKonqueror Version3.1.2
KdeKonqueror Version3.1.3
KdeKonqueror Version3.1.5
KdeKonqueror Version3.2.1
KdeKonqueror Version3.2.3
GentooLinux Version1.4
KdeKde Version3.1.3
KdeKde Version3.2
MandrakesoftMandrake Linux Version9.2
MandrakesoftMandrake Linux Version9.2 Editionamd64
MandrakesoftMandrake Linux Version10.0
MandrakesoftMandrake Linux Version10.0 Editionamd64
SuseSuse Linux Version8 Editionenterprise_server
SuseSuse Linux Version8.1
SuseSuse Linux Version8.2
SuseSuse Linux Version9.0
SuseSuse Linux Version9.0 Editionenterprise_server
SuseSuse Linux Version9.0 Editionx86_64
SuseSuse Linux Version9.1
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1.5% 0.793
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.5 10 6.4
AV:N/AC:L/Au:N/C:P/I:P/A:P