The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Vulnerability of Konqueror, Opera: address bar spoofing

Synthesis of the vulnerability 

An attacker can use the data: uri in order to spoof the content of the address bar.
Vulnerable systems: Fedora, Mandriva Linux, NLD, OES, openSUSE, Opera, RHEL, Slackware, SLES, Unix (platform) ~ not comprehensive.
Severity of this threat: 1/4.
Number of vulnerabilities in this bulletin: 2.
Creation date: 16/07/2007.
Références of this weakness: advisory-20070816-1, advisory-20070914-1, BID-24912, BID-24917, BID-24918, CVE-2007-3819, CVE-2007-3820, FEDORA-2007-1699, FEDORA-2007-1700, MDKSA-2007:176, RHSA-2007:0905-01, RHSA-2007:0909-01, SSA:2007-264-01, SUSE-SR:2007:015, VIGILANCE-VUL-7010.

Description of the vulnerability 

The RFC 2397 defines "data:" uris which can contain documents or images. For example:
  data:text/html;,<HTML ...
  data:text/html;base64,PEhUTU...

These uris are displayed in the address bar. However, instead of starting by "data:text/html", address is shifted and only end of uri is displayed. For example following uri:
  data:text/html;,<HTML ... http://server/ _spaces_.
Displays:
  http://server/ _spaces_.

Victim can thus believe to be on a trusted site.
Full bulletin, software filtering, emails, fixes, ... (Request your free trial)

This computer weakness impacts software or systems such as Fedora, Mandriva Linux, NLD, OES, openSUSE, Opera, RHEL, Slackware, SLES, Unix (platform) ~ not comprehensive.

Our Vigil@nce team determined that the severity of this vulnerability note is low.

The trust level is of type confirmed by the editor, with an origin of document.

This bulletin is about 2 vulnerabilities.

A proof of concept or an attack tool is available, so your teams have to process this alert. An attacker with a specialist ability can exploit this cybersecurity threat.

Solutions for this threat 

Konqueror: patch for address bar.
A patch is available:
  KDE 3.5.7
    ftp://ftp.kde.org/pub/kde/security_patches
      e15d6b5580c5a20ab935f8e553d113e0 post-3.5.7-kdebase-konqueror-2.diff
      4c0fb2576875ded606f276421fc49752 post-3.5.7-kdelibs-kdecore-2.diff
  KDE 3.4.2
    ftp://ftp.kde.org/pub/kde/security_patches
      d9a07e8d9a138ef9da90b7af8e35d977 post-3.4.2-kdebase-konqueror.diff

Konqueror: unofficial patch for address bar spoofing.
A patch is available.

Opera: version 9.22.
Version 9.22 is corrected:
  http://www.opera.com/download/

Fedora 7: new kdebase packages.
New packages are available:
e4bd55857163dd2c6da5ddd09a9e3b1a49488591 kdebase-devel-3.5.7-13.fc7.ppc64.rpm
19bcc8edb674fe9dea062eae5e94b0d4fc6e323e kdebase-debuginfo-3.5.7-13.fc7.ppc64.rpm
2c609ff611f3d9700b5459adcda9d44c390a7998 kdebase-3.5.7-13.fc7.ppc64.rpm
5f2b7a612c7db6c3d0787997b8ce4fc8791f06f0 kdebase-extras-3.5.7-13.fc7.ppc64.rpm
877e9f1e8d31f3f0634105958fe33aa94436db7f kdebase-3.5.7-13.fc7.i386.rpm
773cc39dd34f0ce208dbf3493563b69bf0f403de kdebase-debuginfo-3.5.7-13.fc7.i386.rpm
5935a1a1e6ae7865ba2c03c05e31a7e7172266a8 kdebase-extras-3.5.7-13.fc7.i386.rpm
e1848bcfec04c9238c1ef41116f85ad28160d3d3 kdebase-devel-3.5.7-13.fc7.i386.rpm
56f0e6bf6b5a26c00617db465ac7113c2cbbb574 kdebase-debuginfo-3.5.7-13.fc7.x86_64.rpm
afa554ac4d7aea98eff69c97fa4990d344dcbdca kdebase-3.5.7-13.fc7.x86_64.rpm
60cde6a1ce8905309568b506774ede609482f045 kdebase-extras-3.5.7-13.fc7.x86_64.rpm
25f5dafa61aa689e215b2d25cd6ed782d6b89030 kdebase-devel-3.5.7-13.fc7.x86_64.rpm
0cbde41479c3d1aaa247bd616b59efed3b6906aa kdebase-3.5.7-13.fc7.ppc.rpm
5994edd2fe49f7fa9e89e5bf5f3edff82e4d6490 kdebase-extras-3.5.7-13.fc7.ppc.rpm
2eb488eb1bb0c041d614a8c365a4a29eaeca0cfc kdebase-debuginfo-3.5.7-13.fc7.ppc.rpm
4113f1ef4056f66aba4781cd289bafda4165030b kdebase-devel-3.5.7-13.fc7.ppc.rpm
26f1d049c88e196c256f9edc6089b1660fb717d7 kdebase-3.5.7-13.fc7.src.rpm

Fedora 7: new kdelibs packages.
New packages are available:
da99b0c84992e7ddba7402d0b664b86644fc740f kdelibs-3.5.7-20.fc7.ppc64.rpm
2bbe1e5a48f17b17042e4a005df186d0c5200fb9 kdelibs-devel-3.5.7-20.fc7.ppc64.rpm
60145619267321a5b5a07a0ca75fc218712682af kdelibs-debuginfo-3.5.7-20.fc7.ppc64.rpm
fea397416fcddf526b3f298ba80e617c45e4c910 kdelibs-apidocs-3.5.7-20.fc7.ppc64.rpm
53578888d43d22a5fd07eff396fed9a3b09c22d8 kdelibs-apidocs-3.5.7-20.fc7.i386.rpm
459ef9591b3db30e753de1ac80e4770624ec11f3 kdelibs-devel-3.5.7-20.fc7.i386.rpm
89476ee168de0f491a26315d4ccec61d5735db95 kdelibs-debuginfo-3.5.7-20.fc7.i386.rpm
cedf5461e69ed9351754470b40db02cedea9808e kdelibs-3.5.7-20.fc7.i386.rpm
87db2cae70d5f174b94ccaefd4cb1063f30955c7 kdelibs-3.5.7-20.fc7.x86_64.rpm
f6dcc07324d042b4da805ccd4fe9f5e8f84019bf kdelibs-debuginfo-3.5.7-20.fc7.x86_64.rpm
69d46644da6f6095d780aa4b8d26844b4d26a387 kdelibs-apidocs-3.5.7-20.fc7.x86_64.rpm
4a3e81fa59e126243e5534bdd4165dc3fd8c6a3f kdelibs-devel-3.5.7-20.fc7.x86_64.rpm
d86e0364ccdcbf81665fb7eca25fe25e6f0940fc kdelibs-3.5.7-20.fc7.ppc.rpm
a9d5456dd26c8189bdd495213520e155f2c5cc9b kdelibs-apidocs-3.5.7-20.fc7.ppc.rpm
9bf77515e5a19079a9ba486468f8e00967ef2de8 kdelibs-devel-3.5.7-20.fc7.ppc.rpm
87bfc77c4ba5c39e012478ff70eaf03790d58abb kdelibs-debuginfo-3.5.7-20.fc7.ppc.rpm
b5d7faa3f87ad00efa2dc6fccfb29d99e5dc14da kdelibs-3.5.7-20.fc7.src.rpm

Mandriva: new kdebase, kdelibs packages.
New packages are available:
  Mandriva Linux 2007.0:
    kdebase*-3.5.4-35.4mdv2007.0
    kdelibs*-3.5.4-19.6mdv2007.0
  Mandriva Linux 2007.1:
    kdebase*-3.5.6-34.2mdv2007.1
    kdelibs*-3.5.6-11.2mdv2007.1
 Corporate 3.0:
    kdebase*-3.2-79.19.C30mdk
    kdelibs*-3.2-36.20.C30mdk
 Corporate 4.0:
    kdebase*-3.5.4-2.3.20060mlcs4
    kdelibs*-3.5.4-2.7.20060mlcs4

RHEL: new kdebase packages.
New packages are available:
Red Hat Enterprise Linux version 4: kdebase-3.3.1-6.el4
Red Hat Enterprise Linux version 5: kdebase-3.5.4-15.el5

RHEL: new kdelibs packages.
New packages are available:
Red Hat Enterprise Linux version 4: kdelibs-3.3.1-9.el4
Red Hat Enterprise Linux version 5: kdelibs-3.5.4-13.el5

Slackware: new kdebase, kdelibs packages.
New packages are available:
Slackware 12.0 packages:
467ac64778e2a72334b4ac13ff6f3e98 kdebase-3.5.7-i486-3_slack12.0.tgz
13d4eeb321c922503e8edc49f40e95f4 kdelibs-3.5.7-i486-3_slack12.0.tgz

SUSE: new php moodle tomcat5 lighttpd asterisk libarchive xpdf evolution kvirc wireshark gd opera clamav gimp packages.
New packages are available via YaST or FTP.
Full bulletin, software filtering, emails, fixes, ... (Request your free trial)

Computer vulnerabilities tracking service 

Vigil@nce provides software vulnerabilities patches. The Vigil@nce security watch publishes vulnerability bulletins about threats impacting the information system.