Lucene search

K

[email protected]CVE-2011-2827

HistoryAug 29, 2011 - 3:55 p.m.

CVE-2011-2827

2011-08-2915:55:00

CWE-416

[email protected]

web.nvd.nist.gov

33

cve-2011-2827

google chrome

use-after-free vulnerability

denial of service

remote attackers

text searching

nvd

6.9 Medium

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.031 Low

EPSS

Percentile

91.0%

Use-after-free vulnerability in Google Chrome before 13.0.782.215 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to text searching.

CPENameOperatorVersion
google:chromegoogle chromelt13.0.782.215
apple:iphone_osapple iphone oslt5.0
apple:itunesapple ituneslt10.5
apple:safariapple safarilt5.1.1

References

code.google.com/p/chromium/issues/detail?id=90668

googlechromereleases.blogspot.com/2011/08/stable-channel-update_22.html

lists.apple.com/archives/Security-announce/2011//Oct/msg00000.html

lists.apple.com/archives/Security-announce/2011//Oct/msg00001.html

lists.apple.com/archives/Security-announce/2011//Oct/msg00004.html

support.apple.com/kb/HT4981

support.apple.com/kb/HT4999

support.apple.com/kb/HT5000

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14134

6.9 Medium

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.031 Low

EPSS

Percentile

91.0%

Related for CVE-2011-2827

prion1 ubuntucve1 debiancve1 openvas14 nessus6 threatpost1 chrome1 securityvulns6 seebug1 freebsd1