Vulnerability in Kde Konqueror
CVE-2007-1308
ecma/kjs_html.cpp in KDE JavaScript (KJS), as used in Konqueror in KDE 3.5.5, allows remote attackers to cause a denial of service (crash) by accessing the content of an iframe with an ftp:// URI in the src attribute, probably due to a NUL…
EPSS: 0.082 (94.1th percentile) — read the EPSS interpretation.
Affected products
- Kde Konqueror — versions 3.5.5
- N/a — versions n/a
Weakness classification (CWE)
References
- cve@mitre.org (Exploit, vdb-entry, x_refsource_BID)
- cve@mitre.org (x_refsource_REDHAT, vendor-advisory)
- cve@mitre.org (mailing-list, x_refsource_BUGTRAQ)
- cve@mitre.org (mailing-list, Exploit, Patch, x_refsource_FULLDISC)
- cve@mitre.org (vdb-entry, x_refsource_VUPEN)
- cve@mitre.org (x_refsource_MISC)
- cve@mitre.org (x_refsource_UBUNTU, vendor-advisory)
- cve@mitre.org (vendor-advisory, x_refsource_MANDRIVA)
- cve@mitre.org (x_refsource_SECUNIA, Vendor Advisory, third-party-advisory)
- cve@mitre.org (Exploit, Patch, x_refsource_MISC, Vendor Advisory)