GLSA-200501-16 : Konqueror: Java sandbox vulnerabilities
Medium Nessus Plugin ID 16407
SynopsisThe remote Gentoo host is missing one or more security-related patches.
DescriptionThe remote host is affected by the vulnerability described in GLSA-200501-16 (Konqueror: Java sandbox vulnerabilities)
A remote attacker could embed a malicious Java applet in a web page and entice a victim to view it. This applet can then bypass security restrictions and execute any command, or access any file with the rights of the user running Konqueror.
There is no known workaround at this time.
SolutionAll kdelibs users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose kde-base/kdelibs