Note:
This project will be discontinued after December 13, 2021. [more]
2008-12-22
HTMLTokenizer::scriptHandler in Konqueror in KDE 3.5.9 and 3.5.10 allows remote attackers to cause a denial of service (application crash) via an invalid document.load call that triggers use of a deleted object. NOTE: some of these details are obtained from third party information.
Products | Konqueror |
Type | Resource Management Errors (CWE-399) |
First patch | - None (likely due to unavailable code) |
Links |
• http://secunia.com/advisories/32208
• https://exchange.xforce.ibmcloud.com/vulnerabilities/45804 • http://www.vupen.com/english/advisories/2008/2915 • http://www.securityfocus.com/bid/31696 • https://www.exploit-db.com/exploits/6718 |