Rapid7 Vulnerability & Exploit Database

ELSA-2006:0720 Critical kdelibs security update

Free InsightVM Trial No credit card necessary

Watch Demo See how it all works

Back to Search

ELSA-2006:0720 Critical kdelibs security update

Severity

CVSS

(AV:N/AC:M/Au:N/C:P/I:P/A:P)

Published

10/18/2006

Created

07/25/2018

Added

12/20/2011

Modified

07/04/2017

Description

Integer overflow in Qt 3.3 before 3.3.7, 4.1 before 4.1.5, and 4.2 before 4.2.1, as used in the KDE khtml library, kdelibs 3.1.3, and possibly other packages, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted pixmap image.

Solution(s)

oracle-linux-upgrade-kdelibs
oracle-linux-upgrade-kdelibs-devel

References

https://attackerkb.com/topics/cve-2006-4811
20599
CVE - 2006-4811
DSA-1200
OVAL10218
RHSA-2006:0720
RHSA-2006:0725
20061002-01-P
20061101-01-P
SUSE-SA:2006:063
http://oss.oracle.com/pipermail/el-errata/2006-November/000013.html
http://oss.oracle.com/pipermail/el-errata/2007-March/000101.html

Advanced vulnerability management analytics and reporting.

Key Features

Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;