CVE-2003-0592

Name of the Vulnerable Software and Affected Versions Konqueror versions prior to 3.1.3 kdelibs3-crypto (affected versions not specified)

Description The issue allows remote attackers to bypass intended cookie access restrictions on a web application via "%2e%2e" (encoded dot dot) directory traversal sequences in a URL. This causes the browser to send the cookie outside the specified URL subsets, potentially to a vulnerable application running on the same server. Additionally, multiple vulnerabilities in the kdelibs3-crypto package may lead to breaches of confidentiality, integrity, and availability of protected information, with potential for remote exploitation.

Recommendations For Konqueror versions prior to 3.1.3, update to a version later than 3.1.3 to resolve the issue. For kdelibs3-crypto, at the moment, there is no information about a newer version that contains a fix for this vulnerability.