Lucene search

K
cveMitreCVE-2011-1449
HistoryMay 03, 2011 - 10:55 p.m.

CVE-2011-1449

2011-05-0322:55:01
CWE-416
mitre
web.nvd.nist.gov
42
cve-2011-1449
websockets
google chrome
denial of service
remote attack

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

8.6

Confidence

High

EPSS

0.052

Percentile

93.0%

Use-after-free vulnerability in the WebSockets implementation in Google Chrome before 11.0.696.57 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.

Affected configurations

Nvd
Node
googlechromeRange<11.0.696.57
Node
appleitunesRange<10.5
OR
applesafariRange<5.0.6
OR
appleiphone_osRange<5.0
VendorProductVersionCPE
googlechrome*cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
appleitunes*cpe:2.3:a:apple:itunes:*:*:*:*:*:*:*:*
applesafari*cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*
appleiphone_os*cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

8.6

Confidence

High

EPSS

0.052

Percentile

93.0%