CVE - CVE-2006-4811

CVE-ID
CVE-2006-4811	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
Integer overflow in Qt 3.3 before 3.3.7, 4.1 before 4.1.5, and 4.2 before 4.2.1, as used in the KDE khtml library, kdelibs 3.1.3, and possibly other packages, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted pixmap image.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
MISC:1017084 URL:http://securitytracker.com/id?1017084 MISC:20061002-01-P URL:ftp://patches.sgi.com/support/free/security/advisories/20061002-01-P MISC:20061018 rPSA-2006-0195-1 kdelibs URL:http://www.securityfocus.com/archive/1/449173/100/0/threaded MISC:20061101-01-P URL:ftp://patches.sgi.com/support/free/security/advisories/20061101-01-P MISC:20599 URL:http://www.securityfocus.com/bid/20599 MISC:22380 URL:http://secunia.com/advisories/22380 MISC:22397 URL:http://secunia.com/advisories/22397 MISC:22479 URL:http://secunia.com/advisories/22479 MISC:22485 URL:http://secunia.com/advisories/22485 MISC:22492 URL:http://secunia.com/advisories/22492 MISC:22520 URL:http://secunia.com/advisories/22520 MISC:22579 URL:http://secunia.com/advisories/22579 MISC:22586 URL:http://secunia.com/advisories/22586 MISC:22589 URL:http://secunia.com/advisories/22589 MISC:22645 URL:http://secunia.com/advisories/22645 MISC:22738 URL:http://secunia.com/advisories/22738 MISC:22890 URL:http://secunia.com/advisories/22890 MISC:22929 URL:http://secunia.com/advisories/22929 MISC:24347 URL:http://secunia.com/advisories/24347 MISC:ADV-2006-4099 URL:~~http://www.vupen.com/english/advisories/2006/4099~~ (Obsolete source) MISC:DSA-1200 URL:http://www.us.debian.org/security/2006/dsa-1200 MISC:GLSA-200611-02 URL:http://security.gentoo.org/glsa/glsa-200611-02.xml MISC:GLSA-200703-06 URL:http://security.gentoo.org/glsa/glsa-200703-06.xml MISC:MDKSA-2006:186 URL:~~http://www.mandriva.com/security/advisories?name=MDKSA-2006:186~~ (Obsolete source) MISC:MDKSA-2006:187 URL:~~http://www.mandriva.com/security/advisories?name=MDKSA-2006:187~~ (Obsolete source) MISC:RHSA-2006:0720 URL:http://www.redhat.com/support/errata/RHSA-2006-0720.html MISC:RHSA-2006:0725 URL:http://www.redhat.com/support/errata/RHSA-2006-0725.html MISC:SSA:2006-298-01 URL:http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.483634 MISC:SUSE-SA:2006:063 URL:http://lists.suse.com/archive/suse-security-announce/2006-Oct/0006.html MISC:USN-368-1 URL:http://www.ubuntu.com/usn/usn-368-1 MISC:http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=210742 URL:http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=210742 MISC:http://www.trolltech.com/company/newsroom/announcements/press.2006-10-19.5434451733 URL:http://www.trolltech.com/company/newsroom/announcements/press.2006-10-19.5434451733 MISC:https://issues.rpath.com/browse/RPL-723 URL:https://issues.rpath.com/browse/RPL-723 MISC:oval:org.mitre.oval:def:10218 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10218
Assigning CNA
Red Hat, Inc.
Date Record Created
20060915	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20060915)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)

Use of the CVE® List and the associated references from this website are subject to the terms of use. CVE is sponsored by the U.S. Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA). Copyright © 1999–2024, The MITRE Corporation. CVE and the CVE logo are registered trademarks of The MITRE Corporation.