Launchpad CVE tracker

CVE 2011-1168

Cross-site scripting (XSS) vulnerability in the KHTMLPart::htmlError function in khtml/khtml_part.cpp in Konqueror in KDE SC 4.4.0 through 4.6.1 allows remote attackers to inject arbitrary web script or HTML via the URI in a URL corresponding to an unavailable web site.

Related bugs and status

CVE-2011-1168 (Candidate) is related to these bugs:

Bug #743669: XSS scripting vulnerability in kdelibs

		In	Importance	Status
743669	XSS scripting vulnerability in kdelibs	kde4libs (Ubuntu)	Medium	Invalid
743669	XSS scripting vulnerability in kdelibs	kde4libs (Ubuntu Maverick)	Medium	Fix Released
743669	XSS scripting vulnerability in kdelibs	kde4libs (Ubuntu Lucid)	Medium	Fix Released
743669	XSS scripting vulnerability in kdelibs	kde4libs (Ubuntu Karmic)	Medium	Fix Released
743669	XSS scripting vulnerability in kdelibs	kde4libs (Ubuntu Natty)	Medium	Invalid

See the

CVE page on Mitre.org for more details.

References

MISC: http://www.nth-dimensi...
MISC: http://securitytracker...
MISC: http://www.securityfoc...
MISC: http://www.securityfoc...
MISC: http://secunia.com/adv...
MISC: http://secunia.com/adv...
MISC: http://www.securityfoc...
MISC: http://securityreason....
MISC: http://www.vupen.com/e...
MISC: http://www.vupen.com/e...
MISC: http://www.vupen.com/e...
MISC: http://www.mandriva.co...
MISC: https://bugzilla.redha...
MISC: http://slackware.com/s...
MISC: http://lists.opensuse....
MISC: http://www.ubuntu.com/...
MISC: http://www.kde.org/inf...
MISC: https://exchange.xforc...

Launchpad.net

CVE 2011-1168

Related bugs and status

Related bugs

References