CVE-2006-0019

Heap-based buffer overflow in the encodeURI and decodeURI functions in the kjs JavaScript interpreter engine in KDE 3.2.0 through 3.5.0 allows remote attackers to execute arbitrary code via a crafted, UTF-8 encoded URI.

Date published : 2006-01-20

http://www.securityfocus.com/bid/16325

http://www.securityfocus.com/archive/1/422464/100/0/threaded