Lucene search

[email protected]CVE-2011-3096

HistoryMay 16, 2012 - 12:55 a.m.

CVE-2011-3096

2012-05-1600:55:00

CWE-399

[email protected]

web.nvd.nist.gov

google chrome

use-after-free

vulnerability

cve-2011-3096

denial of service

gtk

omnibox

6.9 Medium

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.016 Low

EPSS

Percentile

87.3%

JSON

Use-after-free vulnerability in Google Chrome before 19.0.1084.46 on Linux allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging an error in the GTK implementation of the omnibox.

CPENameOperatorVersion
google:chromegoogle chromele19.0.1084.45

CPE	Name	Operator	Version
google:chrome	google chrome	le	19.0.1084.45

References

code.google.com/p/chromium/issues/detail?id=123530

googlechromereleases.blogspot.com/2012/05/stable-channel-update.html

lists.opensuse.org/opensuse-security-announce/2012-05/msg00017.html

security.gentoo.org/glsa/glsa-201205-03.xml

www.securityfocus.com/bid/53540

www.securitytracker.com/id?1027067

exchange.xforce.ibmcloud.com/vulnerabilities/75601

6.9 Medium

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.016 Low

EPSS

Percentile

87.3%

JSON

Related for CVE-2011-3096

ubuntucve1 prion1 debiancve1 nessus6 openvas8 freebsd1 gentoo1 suse1 threatpost1 chrome1