Description
KDE Konqueror 3.5.1 and earlier allows remote attackers to cause a denial of service (application crash) by calling the replaceChild method on a DOM object, which triggers a null dereference, as demonstrated by calling document.replaceChild with a 0 (zero) argument.
Exploits (1)
References (7)
Core 7
Core References
Vendor Advisory vendor-advisory
x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDKSA-2006:130
Exploit vdb-entry
x_refsource_osvdb
http://www.osvdb.org/27058
Exploit vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/18978
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/27744
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2006/2812
Exploit x_refsource_misc
http://browserfun.blogspot.com/2006/07/mobb-14-konqueror-replacechild.html
Vendor Advisory vendor-advisory
x_refsource_ubuntu
http://www.ubuntu.com/usn/usn-322-1
Scores
EPSS
0.0562
EPSS Percentile
90.4%
Details
Status
published
Products (24)
kde/konqueror
2.1.1
kde/konqueror
2.1.2
kde/konqueror
2.2.1
kde/konqueror
2.2.2
kde/konqueror
3.0
kde/konqueror
3.0.1
kde/konqueror
3.0.2
kde/konqueror
3.0.3
kde/konqueror
3.0.5
kde/konqueror
3.0.5b
... and 14 more
Published
Jul 18, 2006
Tracked Since
Feb 18, 2026