|
Family: Mandrake Local Security Checks --> Category: infos
MDKSA-2006:130: kdelibs Vulnerability Scan
Vulnerability Scan Summary Check for the version of the kdelibs package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory MDKSA-2006:130 (kdelibs).
KDE Konqueror 3.5.1 and earlier allows remote attackers to cause a denial
of service (application crash) by calling the replaceChild method on a
DOM object, which triggers a null dereference, as demonstrated by calling
document.replaceChild with a 0 (zero) argument.
This issue does not affect Corporate 3.0.
Updated packages have been patched to correct this issue.
Solution : http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2006:130
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|