Lucene search

K

[email protected]NVD:CVE-2012-4515

HistoryNov 11, 2012 - 1:00 p.m.

CVE-2012-4515

2012-11-1113:00:51

CWE-399

[email protected]

web.nvd.nist.gov

4

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

8.9 High

AI Score

Confidence

High

0.03 Low

EPSS

Percentile

90.9%

Use-after-free vulnerability in khtml/rendering/render_replaced.cpp in Konqueror in KDE 4.7.3, when the context menu is shown, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by accessing an iframe when it is being updated.

Affected configurations

NVD

Node

kdekdeMatch4.7.3

References

archives.neohapsis.com/archives/bugtraq/2012-11/0005.html

quickgit.kde.org/index.php?p=kdelibs.git&a=commitdiff&h=4f2eb356f1c23444fff2cfe0a7ae10efe303d6d8

secunia.com/advisories/51097

secunia.com/advisories/51145

www.nth-dimension.org.uk/pub/NDSA20121010.txt.asc

www.openwall.com/lists/oss-security/2012/10/11/11

www.openwall.com/lists/oss-security/2012/10/30/6

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

8.9 High

AI Score

Confidence

High

0.03 Low

EPSS

Percentile

90.9%

Related for NVD:CVE-2012-4515

prion1 debiancve1 cvelist1 cve1 ubuntucve1 openvas10 fedora5 nessus6 gentoo1 securityvulns2 seebug1 exploitpack1 packetstorm1 exploitdb1