KDE KHTML Numeric Character References Memory Corruption Vulnerability

Last Update Date: 28 Jan 2011 Release Date: 28 Jul 2009 4468 Views

RISK: Medium Risk

Medium Risk

A vulnerability has been identified in KDE, which could be exploited by malicious people to potentially compromise a user's system.

The vulnerability is caused due to an error in KHTML when processing numeric character references and can be exploited to corrupt memory.

Impact

  • Denial of Service
  • Remote Code Execution

System / Technologies affected

  • KDE 3.x
  • KDE 4.x

Solutions

There is no patch available for this vulnerability currently.

Fixed in the SVN repository:

  • http://websvn.kde.org/?view=rev&revision=1002162
  • http://websvn.kde.org/?view=rev&revision=1002163
  • http://websvn.kde.org/?view=rev&revision=1002164

    • Vulnerability Identifier

    • No CVE information is available

    Source

    Share with

    Previous

    Adobe Acrobat/Reader and Flash Player Code Execution Vulnerability

    23 Jul 2009 4433 Views

    Next

    Microsoft Internet Explorer Multiple Vulnerabilities (29 July 2009)

    29 Jul 2009 4262 Views

    We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

    PRIVACY POLICY