Vulnerabilities > CVE-2007-2164 - Denial-Of-Service vulnerability in KDE Konqueror 3.5.5
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
PARTIAL Summary
Konqueror 3.5.5 release 45.4 allows remote attackers to cause a denial of service (browser crash or abort) via JavaScript that matches a regular expression against a long string, as demonstrated using /(.)*/.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Statements
contributor | Vincent Danen |
lastmodified | 2007-09-18 |
organization | Mandriva |
statement | Mandriva does not consider crashes of client applications such as Konqueror to be a security issue. |