Lucene search
Ubuntu.comUB:CVE-2012-3413HistoryJul 19, 2012 - 12:00 a.m.
CVE-2012-3413
2012-07-1900:00:00
ubuntu.com
ubuntu.com
5
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.005 Low
EPSS
Percentile
75.2%
The HTMLQuoteColorer::process function in
messageviewer/htmlquotecolorer.cpp in KDE PIM 4.6 through 4.8 does not
disable JavaScript, Java, and Plugins, which allows remote attackers to
inject arbitrary web script or HTML via a crafted email.
Bugs
Notes
| Author | Note |
|---|---|
| mdeslaur | caused by webkit migration, doesn’t affect natty and lower |
Related
nessus
nessus
Ubuntu 11.10 / 12.04 LTS : kdepim vulnerability (USN-1512-1)
2012-07-20 00:00:00
Fedora 16 : kdepim-4.8.4-4.fc16 (2012-10411)
2012-07-27 00:00:00
Fedora 17 : kdepim-4.8.4-4.fc17 (2012-10410)
2012-07-20 00:00:00
ubuntu
ubuntu
KDE PIM vulnerability
2012-07-19 00:00:00
openvas
openvas
Fedora Update for kdepim FEDORA-2012-10411
2012-07-30 00:00:00
Fedora Update for kdepim FEDORA-2012-10411
2012-07-30 00:00:00
Ubuntu Update for kdepim USN-1512-1
2012-07-23 00:00:00
prion
prion
Hardcoded credentials
2012-08-07 20:55:00
cvelist
cvelist
CVE-2012-3413
2012-08-07 20:00:00
debiancve
debiancve
CVE-2012-3413
2012-08-07 20:55:00
nvd
nvd
CVE-2012-3413
2012-08-07 20:55:03
cve
cve
CVE-2012-3413
2012-08-07 20:55:03
fedora
fedora
[SECURITY] Fedora 17 Update: kdepim-4.8.4-4.fc17
2012-07-19 08:57:00
[SECURITY] Fedora 16 Update: kdepim-4.8.4-4.fc16
2012-07-26 22:33:42
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.005 Low
EPSS
Percentile
75.2%
Related for UB:CVE-2012-3413