CVE-2005-3856 Information

Description

The Popular URL capability (popularurls.cpp) in Krusader 1.60.0 and 1.70.0-beta1 saves passwords in cleartext in the krusaderrc file when the user enters URLs containing passwords in the panel URL field which might allow attackers to access other sites.

Reference

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=336169 http://www.krusader.org/phpBB/viewtopic.php?t=1367 http://www.krusader.org/phpBB/viewtopic.php?t=1368 The Popular URL capability (popularurls.cpp) in Krusader 1.60.0 and 1.70.0-beta1 saves passwords in cleartext in the krusaderrc file when the user enters URLs containing passwords in the panel URL field which might allow attackers to access other sites.