Common Vulnerabilities and Exposures assigned an identifier CVE-2007-1308 to the following vulnerability: ecma/kjs_html.cpp in KDE JavaScript (KJS), as used in Konqueror in KDE 3.5.5, allows remote attackers to cause a denial of service (crash) by accessing the content of an iframe with an ftp:// URI in the src attribute, probably due to a NULL pointer dereference. References: http://lists.grok.org.uk/pipermail/full-disclosure/2007-March/052793.html http://bindshell.net/advisories/konq355 http://bindshell.net/advisories/konq355/konq355-patch.diff http://www.securityfocus.com/bid/22814
Patch for this issue is included in KDE security advisory: http://www.kde.org/info/security/advisory-20070326-1.txt CVE name is *not* mentioned in KDE advisory, it only references CVE-2007-1564, also discovered and reported by mark.
This issue only affects kdelibs as shipped in Red Hat Enterprise Linux 5. Older versions of kdelibs as shipped in Red Hat Enterprise Linux 2.1, 3 and 4 are not affected.
This issue has been addressed in following products: Red Hat Linux Enterprise 4 Red Hat Linux Enterprise 4.5.z Red Hat Linux Enterprise 5 Via RHSA-2007:0909 available at https://rhn.redhat.com/errata/RHSA-2007-0909.html