CVE-2012-4514

KDE < 4.9.3 - Denial of Service via Null Pointer Dereference in Rendering

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2012-4514.

AI-analyzed exploit summary This advisory details four memory corruption vulnerabilities in Konqueror 4.7.3, including type confusion, out-of-bounds access, NULL pointer dereference, and use-after-free flaws. It provides technical analysis, PoC code snippets, and patch references for each vulnerability.

Description

rendering/render_replaced.cpp in Konqueror in KDE before 4.9.3 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted web page, related to "trying to reuse a frame with a null part."

Exploits (1)

exploitdb WRITEUP
doslinux
https://www.exploit-db.com/exploits/22406

This advisory details four memory corruption vulnerabilities in Konqueror 4.7.3, including type confusion, out-of-bounds access, NULL pointer dereference, and use-after-free flaws. It provides technical analysis, PoC code snippets, and patch references for each vulnerability.

Classification
Writeup 100%
Attack Type
Dos | Info Leak
Complexity
Moderate
Reliability
Reliable
Target: Konqueror 4.7.3
No auth needed
Prerequisites: Victim must visit a malicious webpage
devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (6)

Core 6
Core References
Various Sources x_refsource_confirm
https://bugs.kde.org/show_bug.cgi?id=271528
Mailing List mailing-list x_refsource_mlist
http://www.openwall.com/lists/oss-security/2012/10/11/11
Third Party Advisory mailing-list x_refsource_bugtraq
http://archives.neohapsis.com/archives/bugtraq/2012-11/0005.html
Mailing List mailing-list x_refsource_mlist
http://www.openwall.com/lists/oss-security/2012/10/30/6

Scores

EPSS 0.0970
EPSS Percentile 94.9%

Details

Status published
Products (50)
kde/kde 1.0
kde/kde 1.1
kde/kde 1.1.1
kde/kde 1.1.2
kde/kde 1.2
kde/kde 1.x
kde/kde 2.0
kde/kde 2.0.1
kde/kde 2.0_beta
kde/kde 2.1
... and 40 more
Published Nov 11, 2012
Tracked Since Feb 18, 2026