Back to search
CVE-2006-0019
Published: Jan 20, 2006
Modified: Aug 7, 2024
PUBLISHED
Description
Heap-based buffer overflow in the encodeURI and decodeURI functions in the kjs JavaScript interpreter engine in KDE 3.2.0 through 3.5.0 allows remote attackers to execute arbitrary code via a crafted, UTF-8 encoded URI.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
oval:org.mitre.oval:def:11858
vdb-entry
signature
x_refsource_OVAL
18500
third-party-advisory
x_refsource_SECUNIA
18552
third-party-advisory
x_refsource_SECUNIA
kde-kjs-bo(24242)
vdb-entry
x_refsource_XF
364
third-party-advisory
x_refsource_SREASON
SUSE-SA:2006:003
vendor-advisory
x_refsource_SUSE
20060119 [KDE Security Advisory] kjs encodeuri/decodeuri heap overflow
mailing-list
x_refsource_BUGTRAQ
FLSA:178606
vendor-advisory
x_refsource_FEDORA
MDKSA-2006:019
vendor-advisory
x_refsource_MANDRIVA
RHSA-2006:0184
vendor-advisory
x_refsource_REDHAT
18559
third-party-advisory
x_refsource_SECUNIA
1015512
vdb-entry
x_refsource_SECTRACK
ADV-2006-0265
vdb-entry
x_refsource_VUPEN
18583
third-party-advisory
x_refsource_SECUNIA
http://www.kde.org/info/security/advisory-20060119-1.txt
x_refsource_CONFIRM
USN-245-1
vendor-advisory
x_refsource_UBUNTU
18570
third-party-advisory
x_refsource_SECUNIA
SSA:2006-045-05
vendor-advisory
x_refsource_SLACKWARE
DSA-948
vendor-advisory
x_refsource_DEBIAN
22659
vdb-entry
x_refsource_OSVDB
18540
third-party-advisory
x_refsource_SECUNIA
16325
vdb-entry
x_refsource_BID
GLSA-200601-11
vendor-advisory
x_refsource_GENTOO
18899
third-party-advisory
x_refsource_SECUNIA
18561
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now