7 matches found
Scientific Linux Security Update : kdelibs on SL5.x, SL4.x i386/x86_64
Two cross-site-scripting flaws were found in the way Konqueror processes certain HTML content. This could result in a malicious attacker presenting misleading content to an unsuspecting user. CVE-2007-0242, CVE-2007-0537 A flaw was found in KDE JavaScript implementation. A web page containing...
Mandriva Update for kdelibs MDKSA-2007:054 (kdelibs)
Check for the Version of kdelibs OpenVAS Vulnerability Test Mandriva Update for kdelibs MDKSA-2007:054 kdelibs Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...
Ubuntu 5.10 / 6.06 LTS / 6.10 : kdelibs vulnerabilities (USN-447-1)
It was discovered that Konqueror did not correctly handle iframes from JavaScript. If a user were tricked into visiting a malicious website, Konqueror could crash, resulting in a denial of service. CVE-2007-1308 A flaw was discovered in how Konqueror handled PASV FTP responses. If a user were...
Moderate: Red Hat Security Advisory: kdelibs security update
Updated kdelibs packages that resolve several security flaws are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The kdelibs package provides libraries for the K Desktop Environment KDE. Two...
CVE-2007-1308
ecma/kjshtml.cpp in KDE JavaScript KJS, as used in Konqueror in KDE 3.5.5, allows remote attackers to cause a denial of service crash by accessing the content of an iframe with an ftp:// URI in the src attribute, probably due to a NULL pointer dereference...
CVE-2007-1308
ecma/kjshtml.cpp in KDE JavaScript KJS, as used in Konqueror in KDE 3.5.5, allows remote attackers to cause a denial of service crash by accessing the content of an iframe with an ftp:// URI in the src attribute, probably due to a NULL pointer dereference...
CVE-2007-1308
CVE-2007-1308 affects KDE Konqueror's JavaScript engine (KJS) in KDE 3.5.5, allowing a remote user to cause a denial of service (crash) by loading an iframe with an ftp:// URI in the src attribute (NULL pointer dereference). Concrete details and affected components are documented in connected adv...