ID CVE-2007-4229
Summary Unspecified vulnerability in KDE Konqueror 3.5.7 and earlier allows remote attackers to cause a denial of service (failed assertion and application crash) via certain malformed HTML, as demonstrated by a document containing TEXTAREA, BUTTON, BR, BDO, PRE, FRAMESET, and A tags. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
References
Vulnerable Configurations
  • cpe:2.3:a:kde:konqueror:3.5.7
    cpe:2.3:a:kde:konqueror:3.5.7
CVSS
Base: 4.3 (as of 09-08-2007 - 08:52)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
exploit-db via4
description KDE Konqueror 3.5.7 Assert Denial of Service Vulnerability. CVE-2007-4229. Dos exploit for linux platform
id EDB-ID:30444
last seen 2016-02-03
modified 2007-03-05
published 2007-03-05
reporter Thomas Waldegger
source https://www.exploit-db.com/download/30444/
title KDE Konqueror <= 3.5.7 Assert Denial of Service Vulnerability
refmap via4
bid 25170
bugtraq 20070801 [BuHa-Security] DoS Vulnerability in Konqueror 3.5.7
misc http://downloads.securityfocus.com/vulnerabilities/exploits/25170.html
osvdb 42552
statements via4
  • contributor Vincent Danen
    lastmodified 2007-09-18
    organization Mandriva
    statement Mandriva does not consider crashes of client applications such as Konqueror to be a security issue.
  • contributor Joshua Bressers
    lastmodified 2007-08-09
    organization Red Hat
    statement Red Hat does not consider a crash of a client application such as Konqueror to be a security flaw.
Last major update 15-11-2008 - 01:56
Published 08-08-2007 - 18:17
Last modified 15-10-2018 - 17:34
Back to Top