CVE-2004-1165

Publication date 10 January 2005

Last updated 24 July 2024

Ubuntu priority

Konqueror 3.3.1 allows remote attackers to execute arbitrary FTP commands via an ftp:// URL that contains a URL-encoded newline ("%0a") before the FTP command, which causes the commands to be inserted into the resulting FTP session, as demonstrated using a PORT command.

Status

Show unmaintained releases

Package	Ubuntu Release	Status
kdelibs	7.04 feisty	Fixed 3.5.6-0ubuntu14.1
	6.10 edgy	Fixed 3.5.5-0ubuntu3.5
	6.06 LTS dapper	Fixed 3.5.2-0ubuntu18.5

How can I get the fixes?
What do statuses mean?

References

MITRE
NVD
Launchpad
Debian

Other references

https://www.cve.org/CVERecord?id=CVE-2004-1165