Red Hat Bugzilla – Bug 251708
CVE-2007-4224 URL spoof in address bar
Last modified: 2007-09-17 12:24:24 EDT
Common Vulnerabilities and Exposures assigned an identifier CVE-2007-4224
to the following vulnerability:
KDE Konqueror 3.5.7 allows remote attackers to spoof the URL address bar by calling setInterval with a small interval and changing the window.location property.
KDE security advisory targeting CVE-2007-3820, CVE-2007-4224 and CVE-2007-4225
with references to official upstream patches:
this is a low severity flaw which does not trigger the need for a security
update to kde. We will fix this issue when other issues of higher severity
trigger a kde security update.