Family: Mandrake Local Security Checks --> Category: infos
MDKSA-2006:186: kdelibs Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the kdelibs package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory MDKSA-2006:186 (kdelibs).
A vulnerability was discovered in the way that Qt handled pixmap images
and the KDE khtml library used Qt in such a way that untrusted
parameters could be passed to Qt, resulting in an integer overflow.
This flaw could be exploited by a remote attacker in a malicious
website that, when viewed by an individual using Konqueror, would cause
Konqueror to crash or possibly execute arbitrary code with the
rights of the user.
Updated packages have been patched to correct this issue.
Solution : http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2006:186
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.