EUVD-2006-0027

Malware in sbrugna...

kjscollege.com Cross Site Scripting vulnerability OBB-3590598

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Fedora 29 : kdelibs3 (2019-9f2ee52c88)

This update fixes CVE-2019-14744 kconfig arbitrary shell code execution in the KDE 3 compatibility version of kdelibs used by legacy KDE 3 applications. The full list of fixes in this kdelibs3 build : - fixes CVE-2019-14744 - kconfig: malicious .desktop files and others would execute code. KConfi...

Fedora 30 : kdelibs3 (2019-f9f78895c3)

This update fixes CVE-2019-14744 kconfig arbitrary shell code execution in the KDE 3 compatibility version of kdelibs used by legacy KDE 3 applications. The full list of fixes in this kdelibs3 build : - fixes CVE-2019-14744 - kconfig: malicious .desktop files and others would execute code. KConfi...

Fedora Update for kf5-kjs FEDORA-2016-cef912e3a4

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora Update for kf5-kjs FEDORA-2016-4701636a74

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Oracle Linux 5 : kdelibs (ELSA-2009-1127)

The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2009-1127 advisory. - Resolves: 505621, CVE-2009-1687, integer overflow in KJS JavaScript garbage collector CVE-2009-1698, KHTML CSS parser - incorrect handling CSS style...

Mandriva Update for kdelibs MDKSA-2007:076 (kdelibs)

Check for the Version of kdelibs OpenVAS Vulnerability Test Mandriva Update for kdelibs MDKSA-2007:076 kdelibs Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...

[slackware-security] kdelibs

New kdelibs packages are available for Slackware 10.0, 10.1, and 10.2 to fix a security issue with kjs. More details about this issue may be found in the Common Vulnerabilities and Exposures CVE database: https://vulners.com/cve/CVE-2006-0019 Additional information may be found on the KDE website...

Slackware 10.0 / 10.1 / 10.2 : kdelibs (SSA:2006-045-05)

New kdelibs packages are available for Slackware 10.0, 10.1, and 10.2 to fix a security issue with kjs. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Slackware Security Advisory 2006-045-05. The text itself is...

GLSA-200601-11 : KDE kjs: URI heap overflow vulnerability

The remote host is affected by the vulnerability described in GLSA-200601-11 KDE kjs: URI heap overflow vulnerability Maksim Orlovich discovered an incorrect bounds check in kjs when handling URIs. Impact : By enticing a user to load a specially crafted webpage containing malicious JavaScript, an...

KDE kjs: URI heap overflow vulnerability

Background KDE is a feature-rich graphical desktop environment for Linux and Unix-like Operating Systems. kjs is the javascript interpreter used in Konqueror and other parts of KDE. Description Maksim Orlovich discovered an incorrect bounds check in kjs when handling URIs. Impact By enticing a us...

Mandrake Linux Security Advisory : kdelibs (MDKSA-2006:019)

A heap overflow vulnerability was discovered in kjs, the KDE JavaScript interpretter engine. An attacker could create a malicious web site that contained carefully crafted JavaScript code that could trigger the flaw and potentially lead to the arbitrary execution of code as the user visiting the...

[KDE Security Advisory] kjs encodeuri/decodeuri heap overflow

KDE Security Advisory: kjs encodeuri/decodeuri heap overflow vulnerability Original Release Date: 2006-01-19 URL: http://www.kde.org/info/security/advisory-20060119-1.txt 0. References CVE-2006-0019 1. Systems affected: KDE 3.2.0 up to including KDE 3.5.0 2. Overview: Maksim Orlovich discovered a...

CVE-2006-0019

CVE-2006-0019 affects KDE kdelibs/kjs (KDE 3.2.0–3.5.0). The vulnerability is a heap-based overflow in encodeURI/decodeURI when parsing UTF-8 URIs, allowing remote code execution. CVSS v2 base 7.5 (NETWORK, LOW complexity, no auth). OpenVAS and vendor advisories (Debian DSA-948-1; Gentoo GLSA 200...

[SECURITY] [DSA 948-1] New kdelibs packages fix buffer overflow

-------------------------------------------------------------------------- Debian Security Advisory DSA 948-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff January 20th, 2005 http://www.debian.org/security/faq -...