CVE-2004-0527

Description

KDE Konqueror 2.1.1 and 2.2.2 allows remote attackers to spoof a legitimate URL in the status bar via A HREF tags with modified "alt" values that point to the legitimate site, combined with an image map whose href points to the malicious site, which facilitates a "phishing" attack.

Affected products

• KDE / Konqueror2.1.1 – 2.1.1
• KDE / Konqueror2.2.2 – 2.2.2
• KDE / Konqueror3.0 – 3.0
• KDE / Konqueror3.0.1 – 3.0.1
• KDE / Konqueror3.0.2 – 3.0.2
• KDE / Konqueror3.0.3 – 3.0.3
• KDE / Konqueror3.0.5 – 3.0.5
• KDE / Konqueror3.1 – 3.1
• KDE / Konqueror3.1.1 – 3.1.1
• KDE / Konqueror3.1.2 – 3.1.2
• KDE / Konqueror3.1.3 – 3.1.3
• KDE / Konqueror3.2.1 – 3.2.1

References

• MISChttp://www.osvdb.org/6579
• MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/16102
• MISChttp://www.securityfocus.com/bid/10383