Denial of Service and Memory Read Vulnerability in Konqueror's CSS Parser

Denial of Service and Memory Read Vulnerability in Konqueror's CSS Parser

CVE-2012-4512 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

The CSS parser (khtml/css/cssparser.cpp) in Konqueror in KDE 4.7.3 allows remote attackers to cause a denial of service (crash) and possibly read memory via a crafted font face source, related to "type confusion."

Learn more about our Web Application Penetration Testing UK.