Vulnerabilities > CVE-2008-5698 - Resource Management Errors vulnerability in KDE Konqueror
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
HTMLTokenizer::scriptHandler in Konqueror in KDE 3.5.9 and 3.5.10 allows remote attackers to cause a denial of service (application crash) via an invalid document.load call that triggers use of a deleted object. NOTE: some of these details are obtained from third party information.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| OS | 2 | |
| Application | 1 |
Common Weakness Enumeration (CWE)
Exploit-Db
| description | Konqueror 3.5.9 (load) Remote Crash Vulnerability. CVE-2008-5698. Dos exploit for linux platform |
| file | exploits/linux/dos/6718.html |
| id | EDB-ID:6718 |
| last seen | 2016-02-01 |
| modified | 2008-10-10 |
| platform | linux |
| port | |
| published | 2008-10-10 |
| reporter | Jeremy Brown |
| source | https://www.exploit-db.com/download/6718/ |
| title | Konqueror 3.5.9 load Remote Crash Vulnerability |
| type | dos |
Statements
| contributor | Joshua Bressers |
| lastmodified | 2009-01-19 |
| organization | Red Hat |
| statement | Red Hat does not consider a crash of a client application such as Konqueror to be a security issue. |
References
- http://secunia.com/advisories/32208
- http://secunia.com/advisories/32208
- http://securityreason.com/securityalert/4796
- http://securityreason.com/securityalert/4796
- http://www.securityfocus.com/bid/31696
- http://www.securityfocus.com/bid/31696
- http://www.vupen.com/english/advisories/2008/2915
- http://www.vupen.com/english/advisories/2008/2915
- https://exchange.xforce.ibmcloud.com/vulnerabilities/45804
- https://exchange.xforce.ibmcloud.com/vulnerabilities/45804
- https://www.exploit-db.com/exploits/6718
- https://www.exploit-db.com/exploits/6718