Session Fixation Vulnerability in Konqueror Web Browser by KDE
CVE-2004-0746

Currently unrated

Key Information:

Vendor: Kde
Status: Konqueror
Vendor: CVE Published:; 20 October 2004

What is CVE-2004-0746?

Konqueror, the web browser component of KDE, is vulnerable to session fixation attacks due to its handling of cookies for specific country-based top-level domains. This vulnerability allows malicious websites to set cookies that can hijack a user's HTTP session, potentially compromising sensitive data. Attackers may exploit this flaw to impersonate legitimate users, gaining unauthorized access to their sessions.

References

http://secunia.com/advisories/12341

third-party-advisoryx_refsource_SECUNIA

https://exchange.xforce.ibmcloud.com/vulnerabilities/17063

vdb-entryx_refsource_XF

http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio...

vendor-advisoryx_refsource_CONECTIVA

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 20, 2004
Vulnerability Reserved
Jul 26, 2004

CVE-2004-0746 Data

JSON

Kde

What is CVE-2004-0746?

References

Timeline