Mandrake Linux Security Advisory : kdelibs (MDKSA-2003:079)
Medium Nessus Plugin ID 14062
SynopsisThe remote Mandrake Linux host is missing one or more security updates.
DescriptionA vulnerability in Konqueror was discovered where it could inadvertently send authentication credentials to websites other than the intended site in clear text via the HTTP-referer header when authentication credentials are passed as part of a URL in the form http://user:[email protected]/.
The provided packages have a patch that corrects this issue.
SolutionUpdate the affected packages.