Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email firstname.lastname@example.org
[Full-Disclosure] Re: Bug#278518: KDE 3.2.2 (sarge) Konqueror suffers XSS vuln.
From: Adeodato Simó (asp16alu.ua.es)
Date: Wed Oct 27 2004 - 09:00:07 CDT
* Yanosz [Wed, 27 Oct 2004 15:45:21 +0200]:
> Package: Konqueror
> Version: 3.2.2-1 (sarge)
> Severity: Important
> access other frames in a frameset, loaded with from different (sub)domain. By
> that enclosed / secret data can be read through a hidden frameset.
> See http://groenndemon.de/bla for demonstration.
please see http://bugs.debian.org/261740. version 3.2.3-1.sarge.1
(available in testing-proposed-updates) fixed the vulnerability and
will be included in sarge.
you can use this version by adding this line to your sources.list:
deb http://your.mirror.debian.org/debian sarge-proposed-updates main
EM: asp16 [ykwim] alu.ua.es | PK: DA6AE621
If there is a sin against life, it consists perhaps not so much in
despairing of life as in hoping for another life and in eluding the
implacable grandeur of this life.
-- Albert Camus
Full-Disclosure - We believe in it.