CVE-2007-3820
published 2007-07-17CVE-2007-3820: konqueror/konq_combo.cc in Konqueror 3.5.7 allows remote attackers to spoof the data: URI scheme in the address bar via a long URI with trailing whitespace…
PriorityP413low2.6CVSS 2.0
AVNACHAuNCNIPAN
EPSS
2.56%
83.1th percentile
konqueror/konq_combo.cc in Konqueror 3.5.7 allows remote attackers to spoof the data: URI scheme in the address bar via a long URI with trailing whitespace, which prevents the beginning of the URI from being displayed.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| kde | konqueror | — | — |
CVSS provenance
nvdv2.02.6LOWAV:N/AC:H/Au:N/C:N/I:P/A:N
vendor_redhat2.6LOW
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-7mxv-fq9j-x6mx: konqueror/konq_combo
ghsa_unreviewed·2022-05-01
CVE-2007-3820 [LOW] GHSA-7mxv-fq9j-x6mx: konqueror/konq_combo
konqueror/konq_combo.cc in Konqueror 3.5.7 allows remote attackers to spoof the data: URI scheme in the address bar via a long URI with trailing whitespace, which prevents the beginning of the URI from being displayed.
Ubuntu
KDE vulnerabilities
vendor_ubuntu·2007-08-26
CVE-2007-3820 KDE vulnerabilities
Title: KDE vulnerabilities
Summary: KDE vulnerabilities
It was discovered that Konqueror could be tricked into displaying
incorrect URLs. Remote attackers could exploit this to increase their
chances of tricking a user into visiting a phishing URL, which could
lead to credential theft.
Instructions: After a standard system upgrade you need to restart your session to
effect the necessary changes.
Red Hat
Spoofing of URI possible in Konqueror's address bar
vendor_redhat·2007-07-14·CVSS 2.6
CVE-2007-3820 [LOW] Spoofing of URI possible in Konqueror's address bar
Spoofing of URI possible in Konqueror's address bar
konqueror/konq_combo.cc in Konqueror 3.5.7 allows remote attackers to spoof the data: URI scheme in the address bar via a long URI with trailing whitespace, which prevents the beginning of the URI from being displayed.
Statement: This issue did not affect Red Hat Enterprise Linux 2.1 or 3. For Red Hat Enterprise Linux 4 and 5, Red Hat is aware of this issue and is tracking it via the following bug: https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=248537
The Red Hat Product Security has rated this issue as having low security impact, a future update may address this flaw.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2007-4224 URL spoof in address bar
bugzilla·2007-08-10·CVSS 2.6
CVE-2007-4224 [LOW] CVE-2007-4224 URL spoof in address bar
CVE-2007-4224 URL spoof in address bar
Common Vulnerabilities and Exposures assigned an identifier CVE-2007-4224
to the following vulnerability:
KDE Konqueror 3.5.7 allows remote attackers to spoof the URL address bar by calling setInterval with a small interval and changing the window.location property.
References:
http://lists.grok.org.uk/pipermail/full-disclosure/2007-August/065101.html
Discussion:
KDE security advisory targeting CVE-2007-3820, CVE-2007-4224 and CVE-2007-4225
with references to official upstream patches:
http://www.kde.org/info/security/advisory-20070816-1.txt
---
this is a low severity flaw which does not trigger the need for a security
update to kde. We will fix this issue when other issues of higher severity
trigger a kde security update.
Bugzilla
CVE-2007-3820 Spoofing of URI possible in Konqueror's address bar
bugzilla·2007-07-17·CVSS 2.6
CVE-2007-3820 [LOW] CVE-2007-3820 Spoofing of URI possible in Konqueror's address bar
CVE-2007-3820 Spoofing of URI possible in Konqueror's address bar
Description of problem:
An URI that appears in the address bar is scrolled to the right,
and thus a long URI padded with whitespace can be used to trick
user.
Version-Release number of selected component (if applicable):
CVE-2007-3820 Probably Affects: RHEL2.1
CVE-2007-3820 Probably Affects: RHEL3
CVE-2007-3820 Affects: RHEL4
CVE-2007-3820 Affects: RHEL5
CVE-2007-3820 Affects: FC6
CVE-2007-3820 Affects: FC7
Steps to Reproduce:
1. Visit http://alt.swiecki.net/oper1.html
tp://alt.swiecki.net/oper1.html with konqueror
Actual results:
http://alt.swiecki.net/konq.png
Additional info:
An data: URI (with inline HTML) can contain real spaces, not just %20.
Discussion:
Created attachment 159428
Upstream patch for CVE-2007
http://alt.swiecki.net/oper1.htmlhttp://osvdb.org/37242http://secunia.com/advisories/26091http://secunia.com/advisories/26612http://secunia.com/advisories/26720http://secunia.com/advisories/27089http://secunia.com/advisories/27090http://secunia.com/advisories/27096http://secunia.com/advisories/27106http://secunia.com/advisories/27108http://securityreason.com/securityalert/2905http://www.kde.org/info/security/advisory-20070816-1.txthttp://www.mandriva.com/security/advisories?name=MDKSA-2007:176http://www.redhat.com/support/errata/RHSA-2007-0905.htmlhttp://www.redhat.com/support/errata/RHSA-2007-0909.htmlhttp://www.securityfocus.com/archive/1/473703/100/0/threadedhttp://www.securityfocus.com/archive/1/473712/100/0/threadedhttp://www.securityfocus.com/bid/24912http://www.securityfocus.com/bid/24918http://www.securitytracker.com/id?1018396http://www.ubuntu.com/usn/usn-502-1http://www.vupen.com/english/advisories/2007/2538https://exchange.xforce.ibmcloud.com/vulnerabilities/35430https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10345https://www.redhat.com/archives/fedora-package-announce/2007-October/msg00022.htmlhttps://www.redhat.com/archives/fedora-package-announce/2007-October/msg00085.htmlhttp://alt.swiecki.net/oper1.htmlhttp://osvdb.org/37242http://secunia.com/advisories/26091http://secunia.com/advisories/26612http://secunia.com/advisories/26720http://secunia.com/advisories/27089http://secunia.com/advisories/27090http://secunia.com/advisories/27096http://secunia.com/advisories/27106http://secunia.com/advisories/27108http://securityreason.com/securityalert/2905http://www.kde.org/info/security/advisory-20070816-1.txthttp://www.mandriva.com/security/advisories?name=MDKSA-2007:176http://www.redhat.com/support/errata/RHSA-2007-0905.htmlhttp://www.redhat.com/support/errata/RHSA-2007-0909.htmlhttp://www.securityfocus.com/archive/1/473703/100/0/threadedhttp://www.securityfocus.com/archive/1/473712/100/0/threadedhttp://www.securityfocus.com/bid/24912http://www.securityfocus.com/bid/24918http://www.securitytracker.com/id?1018396http://www.ubuntu.com/usn/usn-502-1http://www.vupen.com/english/advisories/2007/2538https://exchange.xforce.ibmcloud.com/vulnerabilities/35430https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10345https://www.redhat.com/archives/fedora-package-announce/2007-October/msg00022.htmlhttps://www.redhat.com/archives/fedora-package-announce/2007-October/msg00085.html
2007-07-17
Published