CVE-2008-4382
published 2008-10-02CVE-2008-4382: Konqueror in KDE 3.5.9 allows remote attackers to cause a denial of service (application crash) via Javascript that calls the alert function with a URL-encoded…
PriorityP413medium5CVSS 2.0
AVNACLAuNCNINAP
EPSS
1.10%
61.7th percentile
Konqueror in KDE 3.5.9 allows remote attackers to cause a denial of service (application crash) via Javascript that calls the alert function with a URL-encoded string of a large number of invalid characters.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| kde | konqueror | — | — |
CVSS provenance
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P
vendor_redhat5.0MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-wx53-938v-jqvg: Konqueror in KDE 3
ghsa_unreviewed·2022-05-02
CVE-2008-4382 [MEDIUM] GHSA-wx53-938v-jqvg: Konqueror in KDE 3
Konqueror in KDE 3.5.9 allows remote attackers to cause a denial of service (application crash) via Javascript that calls the alert function with a URL-encoded string of a large number of invalid characters.
Red Hat
CVE-2008-4382: Konqueror in KDE 3
vendor_redhat·CVSS 5.0
CVE-2008-4382 [MEDIUM] CVE-2008-4382: Konqueror in KDE 3
Konqueror in KDE 3.5.9 allows remote attackers to cause a denial of service (application crash) via Javascript that calls the alert function with a URL-encoded string of a large number of invalid characters.
Statement: We do not consider a crash of a client application such as Konqueror to be a security issue.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2008-10-02
Published