CVE-2013-2074
published 2014-02-05CVE-2013-2074: kioslave/http/http.cpp in KIO in kdelibs 4.10.3 and earlier allows attackers to discover credentials via a crafted request that triggers an "internal server…
PriorityP425medium5CVSS 2.0
AVNACLAuNCPINAN
EPSS
1.98%
78.1th percentile
kioslave/http/http.cpp in KIO in kdelibs 4.10.3 and earlier allows attackers to discover credentials via a crafted request that triggers an "internal server error," which includes the username and password in an error message.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| kde | kdelibs | <= 4.10.3 | — |
| kde | kdelibs | — | — |
| kde | kdelibs | — | — |
| kde | kdelibs | — | — |
CVSS provenance
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:N
osv5.0MEDIUM
vendor_redhat5.0MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
KDE-Libs vulnerability
vendor_ubuntu·2013-05-29
CVE-2013-2074 KDE-Libs vulnerability
Title: KDE-Libs vulnerability
Summary: KDE-Libs could be made to expose web credentials.
It was discovered that KIO would sometimes display web authentication
credentials under certain error conditions. If a user were tricked into
opening a specially crafted web page, an attacker could potentially exploit
this to expose confidential information.
Instructions: After a standard system update you need to restart any applications that
use KIO from KDE-Libs, such as Konqueror, to make all the necessary changes.
Red Hat
kdelibs: prints passwords contained in HTTP URLs in error messages
vendor_redhat·2013-05-06·CVSS 5.0
CVE-2013-2074 [MEDIUM] kdelibs: prints passwords contained in HTTP URLs in error messages
kdelibs: prints passwords contained in HTTP URLs in error messages
kioslave/http/http.cpp in KIO in kdelibs 4.10.3 and earlier allows attackers to discover credentials via a crafted request that triggers an "internal server error," which includes the username and password in an error message.
Package: kdelibs (Red Hat Enterprise Linux 5) - Will not fix
Package: kdelibs (Red Hat Enterprise Linux 6) - Will not fix
GHSA
GHSA-wf2x-h8g9-42vj: kioslave/http/http
ghsa_unreviewed·2022-05-17
CVE-2013-2074 [MEDIUM] CWE-200 GHSA-wf2x-h8g9-42vj: kioslave/http/http
kioslave/http/http.cpp in KIO in kdelibs 4.10.3 and earlier allows attackers to discover credentials via a crafted request that triggers an "internal server error," which includes the username and password in an error message.
OSV
CVE-2013-2074: kioslave/http/http
osv·2014-02-05·CVSS 5.0
CVE-2013-2074 [MEDIUM] CVE-2013-2074: kioslave/http/http
kioslave/http/http.cpp in KIO in kdelibs 4.10.3 and earlier allows attackers to discover credentials via a crafted request that triggers an "internal server error," which includes the username and password in an error message.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2013-2241 gallery3: Multiple information exposure flaws in data rest core module
bugzilla·2013-07-04·CVSS 5.0
CVE-2013-2241 [MEDIUM] CVE-2013-2241 gallery3: Multiple information exposure flaws in data rest core module
CVE-2013-2241 gallery3: Multiple information exposure flaws in data rest core module
Multiple information exposure flaws were found in the way data rest core module of Gallery version 3, an open source project with the goal to develop and support leading photo sharing web application solutions, used to previously restrict access to certain items of the photo album. A remote attacker, valid Gallery 3 user, could use this flaw to possibly obtain sensitive information (file, resize or thumb path of the item in question).
References:
[1] http://galleryproject.org/gallery_3_0_9
Upstream ticket:
[2] http://sourceforge.net/apps/trac/gallery/ticket/2074
Relevant upstream patch (against 3.0.x branch):
[3] https://github.com/gallery/gallery3/commit/cbbcf1b4791762d7da0ea7b6c4f4b551a4d9caed
Disc
Bugzilla
CVE-2013-2074 kdelibs: prints passwords contained in HTTP URLs in error messages
bugzilla·2013-05-10·CVSS 5.0
CVE-2013-2074 [MEDIUM] CVE-2013-2074 kdelibs: prints passwords contained in HTTP URLs in error messages
CVE-2013-2074 kdelibs: prints passwords contained in HTTP URLs in error messages
It was reported [1] that when KDE encounters an "internal server error" and also prints out the URL that caused the error that it would include the username and password (if supplied) to the resource that caused the error. For instance, it would show "https://user:[email protected]" or similar. This is due to kioslave/http/http.cpp using m_request.url.url() rather than the sanitized m_request.url.prettyUrl(). This issue is fixed in git [2].
Note that this information is printed out to the local user actively using the computer.
[1] https://bugs.kde.org/show_bug.cgi?id=319428
[2] https://projects.kde.org/projects/kde/kdelibs/repository/revisions/65d736dab592bced4410ccfa4699de89f78c96ca/diff/kioslave/ht
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=707776http://ubuntu.com/usn/usn-1842-1http://www.openwall.com/lists/oss-security/2013/05/10/4http://www.openwall.com/lists/oss-security/2013/05/11/2http://www.osvdb.org/93244http://xorl.wordpress.com/2013/05/22/cve-2013-2074-kde-kdelibs-password-exposure/https://bugs.kde.org/show_bug.cgi?id=319428https://bugzilla.redhat.com/show_bug.cgi?id=961981https://projects.kde.org/projects/kde/kdelibs/repository/revisions/65d736dab592bced4410ccfa4699de89f78c96ca/diff/kioslave/http/http.cpphttp://bugs.debian.org/cgi-bin/bugreport.cgi?bug=707776http://ubuntu.com/usn/usn-1842-1http://www.openwall.com/lists/oss-security/2013/05/10/4http://www.openwall.com/lists/oss-security/2013/05/11/2http://www.osvdb.org/93244http://xorl.wordpress.com/2013/05/22/cve-2013-2074-kde-kdelibs-password-exposure/https://bugs.kde.org/show_bug.cgi?id=319428https://bugzilla.redhat.com/show_bug.cgi?id=961981https://projects.kde.org/projects/kde/kdelibs/repository/revisions/65d736dab592bced4410ccfa4699de89f78c96ca/diff/kioslave/http/http.cpp
2014-02-05
Published