Lucene search

[email protected]CVE-2011-3080

HistoryMay 01, 2012 - 10:12 a.m.

CVE-2011-3080

2012-05-0110:12:00

CWE-362

[email protected]

web.nvd.nist.gov

cve-2011-3080

race condition

google chrome

ipc

security vulnerability

sandbox bypass

5.9 Medium

AI Score

Confidence

Low

7.6 High

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

0.002 Low

EPSS

Percentile

64.6%

JSON

Race condition in the Inter-process Communication (IPC) implementation in Google Chrome before 18.0.1025.168 allows attackers to bypass intended sandbox restrictions via unspecified vectors.

CPENameOperatorVersion
google:chromegoogle chromelt18.0.1025.168

CPE	Name	Operator	Version
google:chrome	google chrome	lt	18.0.1025.168

References

code.google.com/p/chromium/issues/detail?id=121726

googlechromereleases.blogspot.com/2012/04/stable-channel-update_30.html

osvdb.org/81646

secunia.com/advisories/48992

www.securityfocus.com/bid/53309

www.securitytracker.com/id?1027001

exchange.xforce.ibmcloud.com/vulnerabilities/75272

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15623

5.9 Medium

AI Score

Confidence

Low

7.6 High

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

0.002 Low

EPSS

Percentile

64.6%

JSON

Related for CVE-2011-3080

debiancve1 prion1 ubuntucve1 openvas8 freebsd1 chrome1 nessus5 threatpost1