paul Posted July 21, 2006 Report Share Posted July 21, 2006 KDE Konqueror 3.5.1 and earlier allows remote attackers to cause a denial of service (application crash) by calling the replaceChild method on a DOM object, which triggers a null dereference, as demonstrated by calling document.replaceChild with a 0 (zero) argument. This issue does not affect Corporate 3.0. Updated packages have been patched to correct this issue. Link to comment Share on other sites More sharing options...
Recommended Posts