Lucene search

[email protected]CVE-2011-0485

HistoryJan 14, 2011 - 5:00 p.m.

CVE-2011-0485

2011-01-1417:00:03

CWE-20

[email protected]

web.nvd.nist.gov

cve-2011-0485

google chrome

chrome os

code execution

stale pointer

vulnerability

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.6 High

AI Score

Confidence

Low

0.041 Low

EPSS

Percentile

92.2%

JSON

Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly handle speech data, which allows remote attackers to execute arbitrary code via unspecified vectors that lead to a “stale pointer.”

Affected configurations

NVD

Node

googlechrome_osRange<8.0.552.344

Node

googlechromeRange<8.0.552.237

CPENameOperatorVersion
google:chrome_osgoogle chrome oslt8.0.552.344

CPE	Name	Operator	Version
google:chrome_os	google chrome os	lt	8.0.552.344

References

code.google.com/p/chromium/issues/detail?id=68666

googlechromereleases.blogspot.com/2011/01/chrome-stable-release.html

osvdb.org/70468

secunia.com/advisories/42951

www.securityfocus.com/bid/45788

www.srware.net/forum/viewtopic.php?f=18&t=2054

exchange.xforce.ibmcloud.com/vulnerabilities/64676

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14381

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.6 High

AI Score

Confidence

Low

0.041 Low

EPSS

Percentile

92.2%

JSON

Related for CVE-2011-0485

debiancve1 cvelist1 nvd1 ubuntucve1 prion1 nessus1 openvas4