Vulnerability Description
KDE Konqueror allows remote attackers to cause a denial of service (memory consumption) via a large integer value for the length property of a Select object, a related issue to CVE-2009-1692.
CVSS Score
4.3
MEDIUM
AV:N/AC:M/Au:N/C:N/I:N/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Kde | Konqueror | All versions |
Related Weaknesses (CWE)
References
- http://secunia.com/advisories/36057
- http://secunia.com/advisories/36062
- http://www.exploit-db.com/exploits/9160
- http://www.g-sec.lu/one-bug-to-rule-them-all.htmlExploit
- http://www.mandriva.com/security/advisories?name=MDVSA-2009:330
- http://www.securityfocus.com/archive/1/504969/100/0/threaded
- http://www.securityfocus.com/archive/1/504988/100/0/threaded
- http://www.securityfocus.com/archive/1/504989/100/0/threaded
- http://www.securityfocus.com/archive/1/505006/100/0/threaded
- https://exchange.xforce.ibmcloud.com/vulnerabilities/52871
- https://www.redhat.com/archives/fedora-package-announce/2009-July/msg01177.html
- https://www.redhat.com/archives/fedora-package-announce/2009-July/msg01196.html
- https://www.redhat.com/archives/fedora-package-announce/2009-July/msg01199.html
- https://www.redhat.com/archives/fedora-package-announce/2009-July/msg01200.html
- http://secunia.com/advisories/36057
FAQ
What is CVE-2009-2537?
CVE-2009-2537 is a vulnerability with a CVSS score of 4.3 (MEDIUM). KDE Konqueror allows remote attackers to cause a denial of service (memory consumption) via a large integer value for the length property of a Select object, a related issue to CVE-2009-1692.
How severe is CVE-2009-2537?
CVE-2009-2537 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2009-2537?
Check the references section above for vendor advisories and patch information. Affected products include: Kde Konqueror.