CVE Database


Impact: Important
Public: 2004-03-10


The MITRE CVE dictionary describes this issue as:

Konqueror in KDE 3.1.3 and earlier (kdelibs) allows remote attackers to bypass intended cookie access restrictions on a web application via "%2e%2e" (encoded dot dot) directory traversal sequences in a URL, which causes Konqueror to send the cookie outside the specified URL subsets, e.g. to a vulnerable application that runs on the same server as the target application.

Find out more about CVE-2003-0592 from the MITRE CVE dictionary and NIST NVD.

Red Hat security errata

Platform Errata Release Date
Red Hat Enterprise Linux version 2.1 (kdelibs) RHSA-2004:074 March 10, 2004
Red Hat Linux 9 (kdelibs) RHSA-2004:075 March 10, 2004

External References

This page is generated automatically and has not been checked for errors or omissions.

For clarification or corrections please contact the Red Hat Security Response Team.