cbcvebase.
CVE-2004-1145
published 2004-12-15

CVE-2004-1145: Multiple vulnerabilities in Konqueror in KDE 3.3.1 and earlier (1) allow access to restricted Java classes via JavaScript and (2) do not properly restrict…

PriorityP429medium5CVSS 2.0
AVNACLAuNCNIPAN
EPSS
4.13%
89.6th percentile
Multiple vulnerabilities in Konqueror in KDE 3.3.1 and earlier (1) allow access to restricted Java classes via JavaScript and (2) do not properly restrict access to certain Java classes from the Java applet, which allows remote attackers to bypass sandbox restrictions and read or write arbitrary files.

Affected

40 ranges· showing 25
VendorProductVersion rangeFixed in
altlinuxalt_linux
conectivalinux
conectivalinux
debiandebian_linux
ethereal_groupethereal
ethereal_groupethereal
ethereal_groupethereal
ethereal_groupethereal
ethereal_groupethereal
ethereal_groupethereal
ethereal_groupethereal
ethereal_groupethereal
ethereal_groupethereal
ethereal_groupethereal
ethereal_groupethereal
ethereal_groupethereal
ethereal_groupethereal
ethereal_groupethereal
ethereal_groupethereal
ethereal_groupethereal
ethereal_groupethereal
ethereal_groupethereal
ethereal_groupethereal
ethereal_groupethereal
ethereal_groupethereal

CVSS provenance

nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:P/A:N
vendor_redhat5.0MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.