Your submission was sent successfully! Close

CVE-2007-1308

Published: 7 March 2007

ecma/kjs_html.cpp in KDE JavaScript (KJS), as used in Konqueror in KDE 3.5.5, allows remote attackers to cause a denial of service (crash) by accessing the content of an iframe with an ftp:// URI in the src attribute, probably due to a NULL pointer dereference.

Priority

Unknown

Status

Package Release Status
kdelibs
Launchpad, Ubuntu, Debian
dapper
Released (3.5.2-0ubuntu18.5)
edgy
Released (3.5.5-0ubuntu3.5)
feisty
Released (3.5.6-0ubuntu14.1)
upstream Needs triage