Lucene search

[email protected]CVE-2011-0474

HistoryJan 14, 2011 - 5:00 p.m.

CVE-2011-0474

2011-01-1417:00:02

[email protected]

web.nvd.nist.gov

cve-2011-0474

google chrome

chrome os

css

denial of service

remote attack

nvd

vulnerability

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.3 High

AI Score

Confidence

High

0.043 Low

EPSS

Percentile

92.3%

JSON

Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly handle Cascading Style Sheets (CSS) token sequences in conjunction with cursors, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to a “stale pointer.”

Affected configurations

NVD

Node

googlechromeRange<8.0.552.237

Node

debiandebian_linuxMatch6.0

debiandebian_linuxMatch7.0

Node

googlechrome_osRange<8.0.552.344

CPENameOperatorVersion
google:chromegoogle chromelt8.0.552.237

CPE	Name	Operator	Version
google:chrome	google chrome	lt	8.0.552.237

References

code.google.com/p/chromium/issues/detail?id=66748

googlechromereleases.blogspot.com/2011/01/chrome-stable-release.html

osvdb.org/70457

secunia.com/advisories/42951

www.debian.org/security/2011/dsa-2188

www.securityfocus.com/bid/45788

www.srware.net/forum/viewtopic.php?f=18&t=2054

exchange.xforce.ibmcloud.com/vulnerabilities/64665

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14443

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.3 High

AI Score

Confidence

High

0.043 Low

EPSS

Percentile

92.3%

JSON

Related for CVE-2011-0474

debiancve1 nvd1 cvelist1 ubuntucve1 prion1 nessus1 openvas4