Lucene search
HistoryDec 20, 2006 - 11:28 p.m.
CVE-2006-6660
cve-2006-6660
remote code execution
kde
libkhtml
denial of service
crash
html
vulnerability
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
6.6 Medium
AI Score
Confidence
High
0.011 Low
EPSS
Percentile
84.3%
The nodeType function in KDE libkhtml 4.2.0 and earlier, as used by Konquerer, KMail, and other programs, allows remote attackers to cause a denial of service (crash) via malformed HTML tags, possibly involving a COL SPAN tag embedded in a RANGE tag.
Affected configurations
Node
kdelibkhtmlRange≤4.2.0
| CPE | Name | Operator | Version |
|---|---|---|---|
| kde:libkhtml | kde libkhtml | le | 4.2.0 |
Related
nvd
nvd
CVE-2006-6660
2006-12-20 23:28:00
redhatcve
redhatcve
CVE-2006-6660
2015-10-30 10:04:18
ubuntucve
ubuntucve
CVE-2006-6660
2006-12-20 00:00:00
cvelist
cvelist
CVE-2006-6660
2006-12-20 23:00:00
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
6.6 Medium
AI Score
Confidence
High
0.011 Low
EPSS
Percentile
84.3%
Related for CVE-2006-6660