Vulnerability Details : CVE-2007-4229
Potential exploit
Unspecified vulnerability in KDE Konqueror 3.5.7 and earlier allows remote attackers to cause a denial of service (failed assertion and application crash) via certain malformed HTML, as demonstrated by a document containing TEXTAREA, BUTTON, BR, BDO, PRE, FRAMESET, and A tags. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Vulnerability category: Denial of service
Products affected by CVE-2007-4229
- cpe:2.3:a:kde:konqueror:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2007-4229
2.98%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 91 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2007-4229
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
4.3
|
MEDIUM | AV:N/AC:M/Au:N/C:N/I:N/A:P |
8.6
|
2.9
|
NIST |
Vendor statements for CVE-2007-4229
-
Red Hat 2007-08-09Red Hat does not consider a crash of a client application such as Konqueror to be a security flaw.
-
Mandriva 2007-09-18Mandriva does not consider crashes of client applications such as Konqueror to be a security issue.
References for CVE-2007-4229
Jump to