CVE - CVE-2006-4811

CVE-ID
CVE-2006-4811	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
Integer overflow in Qt 3.3 before 3.3.7, 4.1 before 4.1.5, and 4.2 before 4.2.1, as used in the KDE khtml library, kdelibs 3.1.3, and possibly other packages, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted pixmap image.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
BUGTRAQ:20061018 rPSA-2006-0195-1 kdelibs URL:http://www.securityfocus.com/archive/1/449173/100/0/threaded CONFIRM:http://www.trolltech.com/company/newsroom/announcements/press.2006-10-19.5434451733 CONFIRM:https://issues.rpath.com/browse/RPL-723 DEBIAN:DSA-1200 URL:http://www.us.debian.org/security/2006/dsa-1200 GENTOO:GLSA-200611-02 URL:http://security.gentoo.org/glsa/glsa-200611-02.xml GENTOO:GLSA-200703-06 URL:http://security.gentoo.org/glsa/glsa-200703-06.xml MANDRIVA:MDKSA-2006:186 URL:http://www.mandriva.com/security/advisories?name=MDKSA-2006:186 MANDRIVA:MDKSA-2006:187 URL:http://www.mandriva.com/security/advisories?name=MDKSA-2006:187 REDHAT:RHSA-2006:0720 URL:http://www.redhat.com/support/errata/RHSA-2006-0720.html CONFIRM:http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=210742 REDHAT:RHSA-2006:0725 URL:http://www.redhat.com/support/errata/RHSA-2006-0725.html SGI:20061002-01-P URL:ftp://patches.sgi.com/support/free/security/advisories/20061002-01-P SGI:20061101-01-P URL:ftp://patches.sgi.com/support/free/security/advisories/20061101-01-P SLACKWARE:SSA:2006-298-01 URL:http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.483634 SUSE:SUSE-SA:2006:063 URL:http://lists.suse.com/archive/suse-security-announce/2006-Oct/0006.html UBUNTU:USN-368-1 URL:http://www.ubuntu.com/usn/usn-368-1 BID:20599 URL:http://www.securityfocus.com/bid/20599 OVAL:oval:org.mitre.oval:def:10218 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10218 VUPEN:ADV-2006-4099 URL:http://www.vupen.com/english/advisories/2006/4099 SECTRACK:1017084 URL:http://securitytracker.com/id?1017084 SECUNIA:22479 URL:http://secunia.com/advisories/22479 SECUNIA:22485 URL:http://secunia.com/advisories/22485 SECUNIA:22492 URL:http://secunia.com/advisories/22492 SECUNIA:22380 URL:http://secunia.com/advisories/22380 SECUNIA:22520 URL:http://secunia.com/advisories/22520 SECUNIA:22397 URL:http://secunia.com/advisories/22397 SECUNIA:22579 URL:http://secunia.com/advisories/22579 SECUNIA:22589 URL:http://secunia.com/advisories/22589 SECUNIA:22645 URL:http://secunia.com/advisories/22645 SECUNIA:22586 URL:http://secunia.com/advisories/22586 SECUNIA:22738 URL:http://secunia.com/advisories/22738 SECUNIA:22890 URL:http://secunia.com/advisories/22890 SECUNIA:22929 URL:http://secunia.com/advisories/22929 SECUNIA:24347 URL:http://secunia.com/advisories/24347
Assigning CNA
N/A
Date Entry Created
20060915	Disclaimer: The entry creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20060915)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an entry on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: cve@mitre.org

Use of the Common Vulnerabilities and Exposures (CVE®) List and the associated references from this website are subject to the terms of use. CVE is sponsored by US-CERT in the office of Cybersecurity and Communications at the U.S. Department of Homeland Security. Copyright © 1999–2018, The MITRE Corporation. CVE and the CVE logo are registered trademarks of The MITRE Corporation. For more information, please contact us.