Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
suseSuseSUSE-SA:2006:003
HistoryJan 20, 2006 - 3:06 p.m.

remote code execution in kdelibs3

2006-01-2015:06:24
lists.opensuse.org
10

0.173 Low

EPSS

Percentile

95.6%

JSON

Maksim Orlovich discovered a bug in the JavaScript interpreter used by Konqueror. UTF-8 encoded URLs could lead to a buffer overflow that causes the browser to crash or execute arbitrary code. Attackers could trick users into visiting specially crafted web sites that exploit this bug (CVE-2006-0019).

Solution

JavaScript can be disabled in Konqueror’s settings dialog to prevent exploitation. Some websites may no longer work with disabled JavaScript though. It is recommended to install the update packages.

OSVersionArchitecturePackageVersionFilename
openSUSE10.0ppckdelibs3-devel< 3.4.2-24.2kdelibs3-devel-3.4.2-24.2.ppc.rpm
openSUSE10.0ppckdelibs3< 3.4.2-24.2kdelibs3-3.4.2-24.2.ppc.rpm
openSUSE9.2x86_64kdelibs3-32bit< 9.2-200601131140kdelibs3-32bit-9.2-200601131140.x86_64.rpm
openSUSE10.0x86_64kdelibs3< 3.4.2-24.2kdelibs3-3.4.2-24.2.x86_64.rpm
openSUSE9.3i586kdelibs3-devel< 3.4.0-20.10kdelibs3-devel-3.4.0-20.10.i586.rpm
openSUSE9.3x86_64kdelibs3-32bit< 9.3-7.4kdelibs3-32bit-9.3-7.4.x86_64.rpm
openSUSE9.1i586kdelibs3-32bit< 9.1-200601130425kdelibs3-32bit-9.1-200601130425.i586.rpm
openSUSE9.2i586kdelibs3-devel< 3.3.0-34.11kdelibs3-devel-3.3.0-34.11.i586.rpm
openSUSE10.0x86_64kdelibs3-32bit< 3.4.2-24.2kdelibs3-32bit-3.4.2-24.2.x86_64.rpm
openSUSE10.0x86_64kdelibs3-devel< 3.4.2-24.2kdelibs3-devel-3.4.2-24.2.x86_64.rpm
Rows per page:
1-10 of 221

Related

nessus 9
cvelist 1
debian 2
openvas 8
gentoo 1
redhat 1
slackware 1
cve 1
prion 1
ubuntucve 1
centos 1
securityvulns 2
ubuntu 1
nessus
nessus
Mandrake Linux Security Advisory : kdelibs (MDKSA-2006:019)
2006-01-22 00:00:00
Ubuntu 5.04 / 5.10 : kdelibs vulnerability (USN-245-1)
2006-01-21 00:00:00
CentOS 4 : kdelibs (CESA-2006:0184)
2006-07-05 00:00:00
cvelist
cvelist
CVE-2006-0019
2006-01-20 21:00:00
debian
debian
[SECURITY] [DSA 948-1] New kdelibs packages fix buffer overflow
2006-01-20 14:35:19
[SECURITY] [DSA 948-1] New kdelibs packages fix buffer overflow
2006-01-20 00:00:00
openvas
openvas
Slackware: Security Advisory (SSA:2006-045-05)
2012-09-10 00:00:00
Debian Security Advisory DSA 948-1 (kdelibs)
2008-01-17 00:00:00
Slackware Advisory SSA:2006-045-05 kdelibs
2012-09-11 00:00:00
gentoo
gentoo
KDE kjs: URI heap overflow vulnerability
2006-01-22 00:00:00
redhat
redhat
(RHSA-2006:0184) kdelibs security update
2006-01-19 00:00:00
slackware
slackware
[slackware-security] kdelibs
2006-02-15 00:33:24
cve
cve
CVE-2006-0019
2006-01-20 21:03:00
prion
prion
Heap overflow
2006-01-20 21:03:00
ubuntucve
ubuntucve
CVE-2006-0019
2006-01-20 00:00:00
centos
centos
kdelibs security update
2006-01-19 21:19:19
securityvulns
securityvulns
[Full-disclosure] [USN-245-1] KDE library vulnerability
2006-01-20 00:00:00
[KDE Security Advisory] kjs encodeuri/decodeuri heap overflow
2006-01-22 00:00:00
ubuntu
ubuntu
KDE library vulnerability
2006-01-20 00:00:00

0.173 Low

EPSS

Percentile

95.6%

JSON
Related for SUSE-SA:2006:003
nessus9cvelist1debian2openvas8gentoo1redhat1slackware1cve1prion1ubuntucve1centos1securityvulns2ubuntu1