Vulnerability Note VU#420222
Konqueror fails to restrict access to Java classes
For more information on the Java security model see Sun's Java documentation, particularly the Applet Security FAQ referenced above. Microsoft provides similar documentation in its Java Security Overview and a corresponding FAQ.
Disable Active Scripting and Java
At a minimum, disable Active scripting and Java within the web browser. Instructions for disabling Active scripting and Java can be found in the CERT/CC Malicious Web Scripts FAQ.
Systems Affected (Learn More)
|Vendor||Status||Date Notified||Date Updated|
|KDE Desktop Environment Project||Unknown||-||21 Dec 2004|
CVSS Metrics (Learn More)
This vulnerability was publicly reported by Waldo Bastian.
This document was written by Jeff Gennari.
- CVE IDs: CAN-2004-1145
- Date Public: 20 Dec 2004
- Date First Published: 05 Jan 2005
- Date Last Updated: 14 Jan 2005
- Severity Metric: 3.90
- Document Revision: 49
If you have feedback, comments, or additional information about this vulnerability, please send us email.