HomeKdeCVE-2004-1158

CVE-2004-1158

UNKNOWN
7.5CVSS
Published: 2005-01-10
Updated: 2025-04-03
AI Analysis

Description

Konqueror 3.x up to 3.2.2-6, and possibly other versions, allows remote attackers to spoof arbitrary web sites by injecting content from one window into a target window or tab whose name is known but resides in a different domain, as demonstrated using a pop-up window on a trusted web site, aka the "window injection" vulnerability.

CVSS Metrics

Vector
AV:N/AC:L/Au:N/C:P/I:P/A:P
Access Vector
network
Access Cmplx
low
Auth
none
Confidentiality
partial
Integrity
partial
Availability
partial
Weaknesses
NVD-CWE-Other

Metadata

Primary Vendor
KDE
Published
1/10/2005
Last Modified
4/3/2025
Source
NIST NVD
Note: Verify all details with official vendor sources before applying patches.

Affected Products

kde : konquerorkde : konquerorkde : konquerorkde : konquerorkde : konquerorkde : konquerorkde : konquerorkde : konquerorkde : konquerorkde : konquerorkde : konquerorkde : konquerorkde : konquerorkde : konquerorkde : konquerorkde : konquerorkde : konquerorkde : konquerorkde : konquerorkde : konquerorkde : konquerorkde : konquerormandrakesoft : mandrake_linuxmandrakesoft : mandrake_linuxmandrakesoft : mandrake_linuxmandrakesoft : mandrake_linuxredhat : fedora_coreredhat : fedora_core

AI-Powered Remediation

Generate remediation guidance or a C-suite brief for this vulnerability.

Executive Intelligence Brief

View on NIST NVD
CVE-CVE-2004-1158 | UNKNOWN Severity | CVEDatabase.com | CVEDatabase.com