Rekonq contains a flaw that allows a universal cross site scripting (XSS) attack. This flaw exists because the application does not sanitise the requested URL in its error page when it is unable to fetch the requested URL. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and any unresolvable host. Where cookies have already been set for the parent domain of the unresolvable host, and where the scope of said cookies is wildcarded for all subdomains it may be possible to hijack these cookies.

Upgrade to a version later than 0.5.0 , as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

• CVE ID: 2010-2536 (see also: NVD)
• Secunia Advisory ID: 40646 41275
• Vendor Specific News/Changelog Entry: http://lists.fedoraproject.org/pipermail/package-announce/2010-September/046926.html
  http://lists.fedoraproject.org/pipermail/package-announce/2010-September/046939.html
  https://bugs.kde.org/show_bug.cgi?id=217464
• Mail List Post: http://marc.info/?l=oss-security&m=127971194610788&w=2
  http://marc.info/?l=oss-security&m=127973502617945&w=2
  http://seclists.org/bugtraq/2010/Aug/207
• Other Advisory URL: http://www.nth-dimension.org.uk/utils/get.php?downloadsid=72

• Tim Brown - Nth Dimension