Lucene search

K

[email protected]CVE-2011-1449

HistoryMay 03, 2011 - 10:55 p.m.

CVE-2011-1449

2011-05-0322:55:00

CWE-416

[email protected]

web.nvd.nist.gov

30

cve-2011-1449

websockets

google chrome

denial of service

remote attack

6.9 Medium

AI Score

Confidence

High

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.052 Low

EPSS

Percentile

92.9%

Use-after-free vulnerability in the WebSockets implementation in Google Chrome before 11.0.696.57 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.

CPENameOperatorVersion
google:chromegoogle chromelt11.0.696.57
apple:iphone_osapple iphone oslt5.0
apple:itunesapple ituneslt10.5
apple:safariapple safarilt5.0.6

References

code.google.com/p/chromium/issues/detail?id=77346

googlechromereleases.blogspot.com/2011/04/chrome-stable-update.html

lists.apple.com/archives/security-announce/2011//Jul/msg00002.html

lists.apple.com/archives/Security-announce/2011//Oct/msg00000.html

lists.apple.com/archives/Security-announce/2011//Oct/msg00001.html

support.apple.com/kb/HT4808

support.apple.com/kb/HT4981

support.apple.com/kb/HT4999

exchange.xforce.ibmcloud.com/vulnerabilities/67156

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14478

6.9 Medium

AI Score

Confidence

High

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.052 Low

EPSS

Percentile

92.9%

Related for CVE-2011-1449

prion1 securityvulns7 debiancve1 ubuntucve1 nessus7 openvas8 threatpost1 chrome1 seebug1 freebsd1