KDE Konqueror Browser May Disclose Secure Cookies Via the Network Over Non-Secure Connections - SecurityTracker

	Keep Track of the Latest Vulnerabilities with SecurityTracker!

Home | View Topics | Search | Contact Us |

SecurityTracker
Archives

Sign Up for Your FREE Weekly SecurityTracker E-mail Alert Summary

Instant Alerts

Buy our Premium Vulnerability Notification Service to receive customized, instant alerts

Put SecurityTracker Vulnerability Alerts on Your Web Site -- It's Free!

Become a Partner and License Our Database or Notification Service

Report a Bug

Report a vulnerability that you have found to SecurityTracker
bugs
@
securitytracker.com

Category: Application (Web Browser) > KDE Konqueror

Vendors: KDE.org

KDE Konqueror Browser May Disclose Secure Cookies Via the Network Over Non-Secure Connections

SecurityTracker Alert ID: 1005213

SecurityTracker URL: http://securitytracker.com/id/1005213

CVE Reference: GENERIC-MAP-NOMATCH (Links to External Site)

Date: Sep 11 2002

Impact: Disclosure of authentication information

Fix Available: Yes Vendor Confirmed: Yes Exploit Included: Yes

Version(s): Konqueror in KDE 3.0, KDE 3.0.1 and KDE 3.0.2.

Description: An information disclosure vulnerability was reported in certain versions of KDE Konqueror. The browser may send a secure cookie over a non-secure connection.

It is reported that Konqueror fails to detect the "secure" flag in HTTP cookies. As a result, the browser may send secure cookies back to the originating site over an unencrypted network connection.

It is reported that KDE 2.2.2 and KDE 3.0.3 are not affected.

Impact: The browser may send secure cookies over a non-secure session.

Solution: The vendor has released a fixed version of KDE (3.0.3), available at:

The vendor has also released a patch for KDE 3.0, KDE 3.0.1 and KDE 3.0.2, available at:

http://www.kde.org/download.html

ftp://ftp.kde.org/pub/kde/security_patches :

1abff4a02381b5ca11273d02c6a5c6ca post-3.0-kdelibs-kcookiejar.diff

Vendor URL: www.kde.org/info/security/advisory-20020908-1.txt (Links to External Site)

Cause: Access control error, State error

Underlying OS: Linux (Any), UNIX (Any)

Message History: None.

Source Message Contents

Date: Wed, 11 Sep 2002 01:11:03 +0200
Subject: KDE Security Advisory: Secure Cookie Vulnerability


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

KDE Security Advisory: Secure Cookie Vulnerability
Original Release Date: 2002-09-08
URL: http://www.kde.org/info/security/advisory-20020908-1.txt

0. References
	None.

1. Systems affected:
	Konqueror in KDE 3.0, KDE 3.0.1 and KDE 3.0.2. 
	KDE 2.2.2 and KDE 3.0.3 are NOT affected.

2. Overview:
	Konqueror fails to detect the "secure" flag in HTTP cookies and as 
	a result may send secure cookies back to the originating site over 
	an unencrypted network connection. 
      
3. Impact:
	A secure session that relies solely on secure cookies for 
	identifying the session can possibly be hijacked, or an account 
	which relies solely on secure cookies for logging on may be 
        compromised, by an attacker who manages to eavesdrop on the 
	unencrypted network connection.

4. Solution:
	Upgrade to KDE 3.0.3 in which this problem is fixed or apply the
	patch below.

5. Patch:
        A patch for KDE 3.0, KDE 3.0.1 and KDE 3.0.2 is available from 
	ftp://ftp.kde.org/pub/kde/security_patches :

	1abff4a02381b5ca11273d02c6a5c6ca  post-3.0-kdelibs-kcookiejar.diff
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.7 (GNU/Linux)

iD8DBQE9fldFvsXr+iuy1UoRAkfxAJ9tqM141Dx+7b8ZHlxUcU6uJIsJ0QCg5kXu
PFXLjBmWgER6vfvpYcOiLYM=
=UT1J
-----END PGP SIGNATURE-----

Go to the Top of This SecurityTracker Archive Page

Home | View Topics | Search | Contact Us
Copyright 2013, SecurityGlobal.net LLC