CVE-2006-3672

Name of the Vulnerable Software and Affected Versions KDE Konqueror versions 3.5.1 and earlier

Description The issue allows remote attackers to cause a denial of service, resulting in an application crash. This is achieved by calling the replaceChild method on a DOM object, which triggers a null dereference. An example of this is calling document.replaceChild with a 0 (zero) argument.

Recommendations For KDE Konqueror versions 3.5.1 and earlier, consider avoiding the use of the replaceChild method with a 0 (zero) argument until a fix is available. As a temporary workaround, restrict the execution of document.replaceChild with untrusted input to minimize the risk of exploitation.