VYPR
Unrated severityNVD Advisory· Published Jan 10, 2005· Updated Jun 16, 2026

CVE-2004-1158

CVE-2004-1158

Description

Konqueror 3.x up to 3.2.2-6, and possibly other versions, allows remote attackers to spoof arbitrary web sites by injecting content from one window into a target window or tab whose name is known but resides in a different domain, as demonstrated using a pop-up window on a trusted web site, aka the "window injection" vulnerability.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

29
  • KDE/Konqueror23 versions
    cpe:2.3:a:kde:konqueror:2.1.1:*:*:*:*:*:*:*+ 22 more
    • cpe:2.3:a:kde:konqueror:2.1.1:*:*:*:*:*:*:*
    • cpe:2.3:a:kde:konqueror:2.1.2:*:*:*:*:*:*:*
    • cpe:2.3:a:kde:konqueror:2.2.1:*:*:*:*:*:*:*
    • cpe:2.3:a:kde:konqueror:2.2.2:*:*:*:*:*:*:*
    • cpe:2.3:a:kde:konqueror:3.0:*:*:*:*:*:*:*
    • cpe:2.3:a:kde:konqueror:3.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:kde:konqueror:3.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:kde:konqueror:3.0.3:*:*:*:*:*:*:*
    • cpe:2.3:a:kde:konqueror:3.0.5:*:*:*:*:*:*:*
    • cpe:2.3:a:kde:konqueror:3.0.5b:*:*:*:*:*:*:*
    • cpe:2.3:a:kde:konqueror:3.1:*:*:*:*:*:*:*
    • cpe:2.3:a:kde:konqueror:3.1.1:*:*:*:*:*:*:*
    • cpe:2.3:a:kde:konqueror:3.1.2:*:*:*:*:*:*:*
    • cpe:2.3:a:kde:konqueror:3.1.3:*:*:*:*:*:*:*
    • cpe:2.3:a:kde:konqueror:3.1.4:*:*:*:*:*:*:*
    • cpe:2.3:a:kde:konqueror:3.1.5:*:*:*:*:*:*:*
    • cpe:2.3:a:kde:konqueror:3.2.1:*:*:*:*:*:*:*
    • cpe:2.3:a:kde:konqueror:3.2.2.6:*:*:*:*:*:*:*
    • cpe:2.3:a:kde:konqueror:3.2.3:*:*:*:*:*:*:*
    • cpe:2.3:a:kde:konqueror:3.3:*:*:*:*:*:*:*
    • cpe:2.3:a:kde:konqueror:3.3.1:*:*:*:*:*:*:*
    • cpe:2.3:a:kde:konqueror:3.3.2:*:*:*:*:*:*:*
    • (no CPE)range: <=3.2.2-6
  • cpe:2.3:o:mandrakesoft:mandrake_linux:10.0:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:o:mandrakesoft:mandrake_linux:10.0:*:*:*:*:*:*:*
    • cpe:2.3:o:mandrakesoft:mandrake_linux:10.0:*:amd64:*:*:*:*:*
    • cpe:2.3:o:mandrakesoft:mandrake_linux:10.1:*:*:*:*:*:*:*
    • cpe:2.3:o:mandrakesoft:mandrake_linux:10.1:*:x86_64:*:*:*:*:*
  • cpe:2.3:o:redhat:fedora_core:core_2.0:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:redhat:fedora_core:core_2.0:*:*:*:*:*:*:*
    • cpe:2.3:o:redhat:fedora_core:core_3.0:*:*:*:*:*:*:*

Patches

Vulnerability mechanics

References

12

News mentions

0

No linked articles in our index yet.