CVE-2011-1168

Cross-site scripting XSS vulnerability in the KHTMLPart::htmlError function in khtml/khtmlpart.cpp in Konqueror in KDE SC 4.4.0 through 4.6.1 allows remote attackers to inject arbitrary web script or HTML via the URI in a URL corresponding to an unavailable web site...

CVE-2011-1168

Cross-site scripting XSS vulnerability in the KHTMLPart::htmlError function in khtml/khtmlpart.cpp in Konqueror in KDE SC 4.4.0 through 4.6.1 allows remote attackers to inject arbitrary web script or HTML via the URI in a URL corresponding to an unavailable web site...

CVE-2011-1168

CVE-2011-1168 describes an XSS vulnerability in Konqueror’s KDE SC 4.4.0–4.6.1 due to the KHTMLPart::htmlError handling. The flaw allows a remote attacker to inject arbitrary script/HTML by crafting the URI of an unavailable web site, via the error page rendering path in KHTML/KDelibs. Several co...

CVE-2011-1168

Removed by vendor...

CVE-2011-1168

Cross-site scripting XSS vulnerability in the KHTMLPart::htmlError function in khtml/khtmlpart.cpp in Konqueror in KDE SC 4.4.0 through 4.6.1 allows remote attackers to inject arbitrary web script or HTML via the URI in a URL corresponding to an unavailable web site...

Race condition

Race condition in workspace/krunner/lock/lockdlg.cc in the KRunner lock module in kdebase in KDE SC 4.4.0 allows physically proximate attackers to bypass KScreenSaver screen locking and access an unattended workstation by pressing the Enter key at a certain time, related to multiple forked...

CVE-2010-0923

The CVE-2010-0923 entry concerns KDE KDE SC 4.4.0, specifically the KRunner lock module’s file workspace/krunner/lock/lockdlg.cc. A race condition involving multiple forked processes can let physically proximate attackers bypass the KScreenSaver and access an unattended workstation by pressing th...