KDE : Security Vulnerabilities, CVEs, Published In March 2007 (Denial of service)
Konqueror 3.5.5 allows remote attackers to cause a denial of service (crash) by using JavaScript to read a child iframe having an ftp:// URI.
Max CVSS
7.8
EPSS Score
0.16%
Published
2007-03-21
Updated
2008-09-05
ecma/kjs_html.cpp in KDE JavaScript (KJS), as used in Konqueror in KDE 3.5.5, allows remote attackers to cause a denial of service (crash) by accessing the content of an iframe with an ftp:// URI in the src attribute, probably due to a NULL pointer dereference.
Max CVSS
4.3
EPSS Score
95.74%
Published
2007-03-07
Updated
2018-10-16
Kmail 1.9.1 on KDE 3.5.2, with "Prefer HTML to Plain Text" enabled, allows remote attackers to cause a denial of service (crash) via an HTML e-mail with certain table and frameset tags that trigger a segmentation fault, possibly involving invalid free or delete operations.
Max CVSS
2.6
EPSS Score
3.24%
Published
2007-03-07
Updated
2018-10-16
3 vulnerabilities found