Lucene search
HistoryOct 14, 2011 - 10:55 a.m.
CVE-2011-3231
cve-2011-3231
ssl implementation
apple safari
mac os x
uninitialized memory
x.509 certificates
remote web servers
arbitrary code
crafted certificate
nvd
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
7.4 High
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
71.0%
The SSL implementation in Apple Safari before 5.1.1 on Mac OS X before 10.7 accesses uninitialized memory during the processing of X.509 certificates, which allows remote web servers to execute arbitrary code via a crafted certificate.
Affected configurations
Node
applesafari
ORapplesafariRangeโค5.1
ORapplesafariMatch1.0
ORapplesafariMatch1.0beta
ORapplesafariMatch1.0beta2
ORapplesafariMatch1.0.0
ORapplesafariMatch1.0.0b1
ORapplesafariMatch1.0.0b2
ORapplesafariMatch1.0.1
ORapplesafariMatch1.0.2
ORapplesafariMatch1.0.3
ORapplesafariMatch1.0.385.8
ORapplesafariMatch1.0.385.8.1
ORapplesafariMatch1.0b1-mac
ORapplesafariMatch1.1
ORapplesafariMatch1.1.0
ORapplesafariMatch1.1.1
ORapplesafariMatch1.2
ORapplesafariMatch1.2.0
ORapplesafariMatch1.2.1
ORapplesafariMatch1.2.2
ORapplesafariMatch1.2.3
ORapplesafariMatch1.2.4
ORapplesafariMatch1.2.5
ORapplesafariMatch1.3
ORapplesafariMatch1.3.0
ORapplesafariMatch1.3.1
ORapplesafariMatch1.3.2
ORapplesafariMatch1.3.2312.5
ORapplesafariMatch1.3.2312.6
ORapplesafariMatch2
ORapplesafariMatch2.0
ORapplesafariMatch2.0.0
ORapplesafariMatch2.0.1
ORapplesafariMatch2.0.2
ORapplesafariMatch2.0.3
ORapplesafariMatch2.0.3417.8
ORapplesafariMatch2.0.3417.9
ORapplesafariMatch2.0.3417.9.2
ORapplesafariMatch2.0.3417.9.3
ORapplesafariMatch2.0.4
ORapplesafariMatch2.0.4-mac
ORapplesafariMatch3
ORapplesafariMatch3.0
ORapplesafariMatch3.0.0
ORapplesafariMatch3.0.0-mac
ORapplesafariMatch3.0.0b
ORapplesafariMatch3.0.0b-windows
ORapplesafariMatch3.0.1
ORapplesafariMatch3.0.1-mac
ORapplesafariMatch3.0.1beta
ORapplesafariMatch3.0.1b
ORapplesafariMatch3.0.1b-windows
ORapplesafariMatch3.0.2
ORapplesafariMatch3.0.2-mac
ORapplesafariMatch3.0.2b
ORapplesafariMatch3.0.2b-windows
ORapplesafariMatch3.0.3
ORapplesafariMatch3.0.3-mac
ORapplesafariMatch3.0.3b
ORapplesafariMatch3.0.3b-windows
ORapplesafariMatch3.0.4
ORapplesafariMatch3.0.4-mac
ORapplesafariMatch3.0.4b
ORapplesafariMatch3.0.4b-windows
ORapplesafariMatch3.1.0
ORapplesafariMatch3.1.0-mac
ORapplesafariMatch3.1.0b
ORapplesafariMatch3.1.0b-windows
ORapplesafariMatch3.1.1
ORapplesafariMatch3.1.1b-windows
ORapplesafariMatch3.1.2
ORapplesafariMatch3.1.2b-windows
ORapplesafariMatch3.2.0
ORapplesafariMatch3.2.0b-windows
ORapplesafariMatch3.2.1
ORapplesafariMatch3.2.1b-windows
ORapplesafariMatch3.2.2
ORapplesafariMatch3.2.2b-windows
ORapplesafariMatch4.0
ORapplesafariMatch4.0beta
ORapplesafariMatch4.0.0b
ORapplesafariMatch4.0.1
ORapplesafariMatch4.0.2
ORapplesafariMatch4.0.3
ORapplesafariMatch4.0.4
ORapplesafariMatch4.0.5
ORapplesafariMatch4.1
ORapplesafariMatch4.1.1
ORapplesafariMatch4.1.2
ORapplesafariMatch5.0
ORapplesafariMatch5.0.1
ORapplesafariMatch5.0.2
ORapplesafariMatch5.0.3
ORapplesafariMatch5.0.4
ORapplesafariMatch5.0.5
ORapplesafariMatch5.0.6
applemac_os_xRangeโค10.6.8
ORapplemac_os_x_serverRangeโค10.6.8
Related
seebug
seebug
Apple Safari SSL่ฏไนฆๅค็ๆชๅๅงๅๅ
ๅญ่ฎฟ้ฎ่ฟ็จไปฃ็ ๆง่กๆผๆด
2011-10-17 00:00:00
prion
prion
Design/Logic Flaw
2011-10-14 10:55:00
nvd
nvd
CVE-2011-3231
2011-10-14 10:55:09
cvelist
cvelist
CVE-2011-3231
2011-10-14 10:00:00
securityvulns
securityvulns
Apple Safari / WebKit multiple security vulnerabilities
2011-10-15 00:00:00
APPLE-SA-2011-10-12-4 Safari 5.1.1
2011-10-15 00:00:00
openvas
openvas
Apple Mac OS X v10.6.8 Safari Multiple Vulnerabilities
2011-10-20 00:00:00
Apple MAC OS X v10.6.8 Safari Multiple Vulnerabilities
2011-10-20 00:00:00
nessus
nessus
Mac OS X : Apple Safari < 5.1.1
2011-10-13 00:00:00
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
7.4 High
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
71.0%
Related for CVE-2011-3231