KDE Konqueror Multiple Security Vulnerabilities

Summary

KDE Konqueror is prone to multiple security vulnerabilities.

Credit:

The original article can be found at: http://www.konqueror.org/
The information has been provided by Tim Brown.


Details

Vulnerable Systems:
 * KDE Konqueror 4.7.3

Attackers can exploit these issues to execute arbitrary code in the context of the browser, cause denial-of-service conditions, and disclose sensitive information; other attacks are also possible.

A secure session that relies solely on secure cookies for identifying the session can possibly be hijacked, or an account which relies solely on secure cookies for logging on may be compromised, by an attacker who manages to eavesdrop on the unencrypted network connection.

CVE Information:
CVE-2012-4512
CVE-2012-4513
CVE-2012-4514
CVE-2012-4515

Disclosure Timeline:
Published: Oct 11 2012
Updated: Oct 30 2012

Categories: News