FreeBSD : konquerer -- address bar spoofing (14ad2a28-66d2-11dc-b25f-02e0185f8d72)

This script is Copyright (C) 2007-2013 Tenable Network Security, Inc.


Synopsis :

The remote FreeBSD host is missing one or more security-related
updates.

Description :

The KDE development team reports :

The Konqueror address bar is vulnerable to spoofing attacks that are
based on embedding white spaces in the url. In addition the address
bar could be tricked to show an URL which it is intending to visit for
a short amount of time instead of the current URL.

See also :

http://www.kde.org/info/security/advisory-20070914-1.txt
http://www.nessus.org/u?44d4ae21

Solution :

Update the affected packages.

Risk factor :

Medium / CVSS Base Score : 6.8
(CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P)

Family: FreeBSD Local Security Checks

Nessus Plugin ID: 26085 (freebsd_pkg_14ad2a2866d211dcb25f02e0185f8d72.nasl)

Bugtraq ID:

CVE ID: CVE-2007-3820
CVE-2007-4224
CVE-2007-4225

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now