CVE Database


Impact: Low
Public: 2007-03-04
Bugzilla: 299891: CVE-2007-1308 kdelibs KDE JavaScript denial of service (crash)


The MITRE CVE dictionary describes this issue as:

ecma/kjs_html.cpp in KDE JavaScript (KJS), as used in Konqueror in KDE 3.5.5, allows remote attackers to cause a denial of service (crash) by accessing the content of an iframe with an ftp:// URI in the src attribute, probably due to a NULL pointer dereference.

Find out more about CVE-2007-1308 from the MITRE CVE dictionary and NIST NVD.

Red Hat security errata

Platform Errata Release Date
Red Hat Enterprise Linux version 4 (kdelibs) RHSA-2007:0909 October 08, 2007
Red Hat Enterprise Linux version 5 (kdelibs) RHSA-2007:0909 October 08, 2007

External References

This page is generated automatically and has not been checked for errors or omissions.

For clarification or corrections please contact the Red Hat Security Response Team.