mailing list archives
From: mark <mark () bindshell net>
Date: Sun, 04 Mar 2007 21:38:01 +0000
iframe which is set to an ftp:// URL.
It is possible for malicious websites to crash Konqueror and possibly
other applications with rely on KJS.
tries to read the contents of an FTP iframe. This can be demonstrated
by creating a web page with an iframe with a src of
"ftp://localhost/anything", then reading the contents of this iframe
var contents =
Proof of concept code is available at:
This vulnerability has been tested on Gentoo and Debian running KDE 3.5.5.
mark () bindshell net
2007-02-03 Vulnerability reported to security () kde org
2007-02-28 KDE team recreate bug and produce preliminary patch for
2007-03-01 KDE team produced updated patch for ecma/kjs_html.cpp
2007-03-04 Public advisory released
The latest patch received from the KDE team is available from:
Full-Disclosure - We believe in it.
Hosted and sponsored by Secunia - http://secunia.com/