|
|
CVE Reference: CVE-2007-1308 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2007-1308 |
|
|
Description: ecma/kjs_html.cpp in KDE JavaScript (KJS), as used in Konqueror in KDE 3.5.5, allows remote attackers to cause a denial of service (crash) by accessing the content of an iframe with an ftp:// URI in the src attribute, probably due to a NULL pointer dereference. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/32798 UBUNTU http://www.ubuntu.com/usn/usn-447-1 SREASON http://securityreason.com/securityalert/2345 SAID Secunia Advisory: SA27108 REDHAT http://www.redhat.com/support/errata/RHSA-2007-0909.html OVAL http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:10551 MISC http://bindshell.net/advisories/konq355/konq355-patch.diff http://bindshell.net/advisories/konq355 MANDRIVA http://www.mandriva.com/security/advisories?name=MDKSA-2007:054 FULLDISC http://lists.grok.org.uk/pipermail/full-disclosure/2007-March/052793.html BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/461897/100/0/threaded BID 22814 |
|
| Return to the previous page. |
