Summary
Ubuntu Update for Linux kernel vulnerabilities USN-420-1
Solution
Please Install the Updated Packages.
Insight
Jose Avila III and Robert Tasarz discovered that the KDE HTML library did not correctly parse HTML comments inside the " title"
tag. By
tricking a Konqueror user into visiting a malicious website, an attacker could bypass cross-site scripting protections.
Affected
kdelibs vulnerability on Ubuntu 5.10 ,
Ubuntu 6.06 LTS ,
Ubuntu 6.10
References
Updated on 2015-03-25
Severity
Classification
-
CVE CVE-2007-0537 -
CVSS Base Score: 2.6
AV:N/AC:H/Au:N/C:N/I:P/A:N
Related Vulnerabilities