Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2012-4514

CWE-476 โ€” NULL Pointer Dereference7 documents6 sources
Severity
5.0MEDIUM
EPSS
4.9%
top 10.44%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
KDE KDE
Timeline
PublishedNov 11
Latest updateMay 17

Description

rendering/render_replaced.cpp in Konqueror in KDE before 4.9.3 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted web page, related to "trying to reuse a frame with a null part."

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

โ–ถNVDkde/kde4.9.2+76

๐Ÿ”ดVulnerability Details

2
GHSA
GHSA-gv8j-6fjv-8p98: rendering/render_replacedโ†—2022-05-17
โ–ถ
CVEList
CVE-2012-4514: rendering/render_replacedโ†—2012-11-11
โ–ถ

๐Ÿ’ฅExploits & PoCs

1
Exploit-DB
Konqueror 4.7.3 - Memory Corruptionโ†—2012-11-01
โ–ถ

๐Ÿ“‹Vendor Advisories

1
Red Hat
(khtml): NULL pointer dereference when trying to reuse a frame with null partโ†—2012-10-30
โ–ถ

๐Ÿ’ฌCommunity

2
Bugzilla
CVE-2012-4514 CVE-2012-4515 kdelibs various flaws [fedora-all]โ†—2012-10-30
โ–ถ
Bugzilla
CVE-2012-4514 kdelibs (khtml): NULL pointer dereference when trying to reuse a frame with null partโ†—2012-10-24
โ–ถ