Vulnerabilities > CVE-2008-5698 - Resource Management Errors vulnerability in KDE Konqueror
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
PARTIAL Summary
HTMLTokenizer::scriptHandler in Konqueror in KDE 3.5.9 and 3.5.10 allows remote attackers to cause a denial of service (application crash) via an invalid document.load call that triggers use of a deleted object. NOTE: some of these details are obtained from third party information.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| OS | 2 | |
| Application | 1 |
Common Weakness Enumeration (CWE)
Exploit-Db
| description | Konqueror 3.5.9 (load) Remote Crash Vulnerability. CVE-2008-5698. Dos exploit for linux platform |
| file | exploits/linux/dos/6718.html |
| id | EDB-ID:6718 |
| last seen | 2016-02-01 |
| modified | 2008-10-10 |
| platform | linux |
| port | |
| published | 2008-10-10 |
| reporter | Jeremy Brown |
| source | https://www.exploit-db.com/download/6718/ |
| title | Konqueror 3.5.9 load Remote Crash Vulnerability |
| type | dos |
Statements
| contributor | Joshua Bressers |
| lastmodified | 2009-01-19 |
| organization | Red Hat |
| statement | Red Hat does not consider a crash of a client application such as Konqueror to be a security issue. |