CVE-2004-1145

Published: Dec 15, 2004Modified: Apr 16, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:N/I:P/A:N

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

Multiple vulnerabilities in Konqueror in KDE 3.3.1 and earlier (1) allow access to restricted Java classes via JavaScript and (2) do not properly restrict access to certain Java classes from the Java applet, which allows remote attackers to bypass sandbox restrictions and read or write arbitrary files.

Affected (61)

Products: Conectiva: Linux · Ethereal Group: Ethereal · Sgi: Propack · +4 more

Show all products

Conectiva: Linux · Ethereal Group: Ethereal · Sgi: Propack · Altlinux: Alt Linux · Debian: Debian Linux · Redhat: Enterprise Linux, Enterprise Linux Desktop, Linux Advanced Workstation · Suse: Suse Linux

1 product

1 product

1 product

1 product

1 product

3 products

Enterprise Linux Desktop

Linux Advanced Workstation

Suse

1 product

Suse Linux

Configuration A

28 vulnerable

Vulnerable Software	Affected Versions
Conectiva Linux	Version 10.0
Conectiva Linux	Version 9.0
Ethereal Group Ethereal	Version 0.10.1
Ethereal Group Ethereal	Version 0.10.2
Ethereal Group Ethereal	Version 0.10.3
Ethereal Group Ethereal	Version 0.10.4
Ethereal Group Ethereal	Version 0.10.5
Ethereal Group Ethereal	Version 0.10.6
Ethereal Group Ethereal	Version 0.10.7
Ethereal Group Ethereal	Version 0.10
Ethereal Group Ethereal	Version 0.9.10
Ethereal Group Ethereal	Version 0.9.11
Ethereal Group Ethereal	Version 0.9.12
Ethereal Group Ethereal	Version 0.9.13
Ethereal Group Ethereal	Version 0.9.14
Ethereal Group Ethereal	Version 0.9.15
Ethereal Group Ethereal	Version 0.9.16
Ethereal Group Ethereal	Version 0.9.1
Ethereal Group Ethereal	Version 0.9.2
Ethereal Group Ethereal	Version 0.9.3
Ethereal Group Ethereal	Version 0.9.4
Ethereal Group Ethereal	Version 0.9.5
Ethereal Group Ethereal	Version 0.9.6
Ethereal Group Ethereal	Version 0.9.7
Ethereal Group Ethereal	Version 0.9.8
Ethereal Group Ethereal	Version 0.9.9
Ethereal Group Ethereal	Version 0.9
Sgi Propack	Version 3.0

Configuration B

33 vulnerable

Vulnerable Software	Affected Versions
Altlinux Alt Linux	Version 2.3
Altlinux Alt Linux	Version 2.3
Debian Debian Linux	Version 3.0
Debian Debian Linux	Version 3.0
Debian Debian Linux	Version 3.0
Debian Debian Linux	Version 3.0
Debian Debian Linux	Version 3.0
Debian Debian Linux	Version 3.0
Debian Debian Linux	Version 3.0
Debian Debian Linux	Version 3.0
Debian Debian Linux	Version 3.0
Debian Debian Linux	Version 3.0
Debian Debian Linux	Version 3.0
Redhat Enterprise Linux	Version 2.1
Redhat Enterprise Linux	Version 2.1
Redhat Enterprise Linux	Version 2.1
Redhat Enterprise Linux	Version 2.1
Redhat Enterprise Linux	Version 2.1
Redhat Enterprise Linux	Version 2.1
Redhat Enterprise Linux	Version 3.0
Redhat Enterprise Linux	Version 3.0
Redhat Enterprise Linux	Version 3.0
Redhat Enterprise Linux Desktop	Version 3.0
Redhat Linux Advanced Workstation	Version 2.1
Redhat Linux Advanced Workstation	Version 2.1
Suse Suse Linux	Version 8.0
Suse Suse Linux	Version 8.0
Suse Suse Linux	Version 8.1
Suse Suse Linux	Version 8.2
Suse Suse Linux	Version 9.0
Suse Suse Linux	Version 9.0
Suse Suse Linux	Version 9.1
Suse Suse Linux	Version 9.2