Lucene search

Veracode Vulnerability DatabaseVERACODE:23180

HistoryApr 10, 2020 - 12:18 a.m.

Denial Of Service (DoS)

2020-04-1000:18:44

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

JSON

kdelibs is vulnerable to denial of service (DoS). The vulnerability exists as a flaw was found in KDE JavaScript implementation. A web page containing malicious JavaScript code could cause Konqueror to crash.

CPENameOperatorVersion
kdelibseq3.5.4__11.el5
kdelibseq3.5.4__11.el5

CPE	Name	Operator	Version
	kdelibs	eq	3.5.4__11.el5
	kdelibs	eq	3.5.4__11.el5

References

bindshell.net/advisories/konq355

bindshell.net/advisories/konq355/konq355-patch.diff

lists.grok.org.uk/pipermail/full-disclosure/2007-March/052793.html

secunia.com/advisories/27108

securityreason.com/securityalert/2345

www.mandriva.com/security/advisories?name=MDKSA-2007:054

www.redhat.com/security/updates/classification/#moderate

www.redhat.com/support/errata/RHSA-2007-0909.html

www.securityfocus.com/archive/1/461897/100/0/threaded

www.securityfocus.com/bid/22814

www.ubuntu.com/usn/usn-447-1

www.vupen.com/english/advisories/2007/0886

access.redhat.com/errata/RHSA-2007:0909

exchange.xforce.ibmcloud.com/vulnerabilities/32798

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10551

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

JSON

Related for VERACODE:23180