Unrated severityNVD Advisory· Published Nov 11, 2012· Updated Apr 29, 2026

CVE-2012-4515

Description

Use-after-free vulnerability in khtml/rendering/render_replaced.cpp in Konqueror in KDE 4.7.3, when the context menu is shown, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by accessing an iframe when it is being updated.

Affected products

KDE/Kde
cpe:2.3:o:kde:kde:4.7.3:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

quickgit.kde.org/index.phpnvdExploit
www.nth-dimension.org.uk/pub/NDSA20121010.txt.ascnvdExploit
secunia.com/advisories/51097nvdVendor Advisory
secunia.com/advisories/51145nvdVendor Advisory
archives.neohapsis.com/archives/bugtraq/2012-11/0005.htmlnvd
www.openwall.com/lists/oss-security/2012/10/11/11nvd
www.openwall.com/lists/oss-security/2012/10/30/6nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.008
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000