CVE-2008-5698 - Vulncode-DB

CVE-2008-5698 (NVD)

2008-12-22

HTMLTokenizer::scriptHandler in Konqueror in KDE 3.5.9 and 3.5.10 allows remote attackers to cause a denial of service (application crash) via an invalid document.load call that triggers use of a deleted object. NOTE: some of these details are obtained from third party information.

Products	Konqueror
Type	Resource Management Errors (CWE-399)
First patch	- None (likely due to unavailable code)
Links	• http://secunia.com/advisories/32208 • https://exchange.xforce.ibmcloud.com/vulnerabilities/45804 • http://www.vupen.com/english/advisories/2008/2915 • http://www.securityfocus.com/bid/31696 • https://www.exploit-db.com/exploits/6718 More/Less (1) • http://securityreason.com/securityalert/4796