Lucene search
AppleCVE-2011-3457HistoryFeb 02, 2012 - 6:55 p.m.
CVE-2011-3457
2012-02-0218:55:01
CWE-119
apple
web.nvd.nist.gov
31
cve-2011-3457
apple
mac os x
opengl
glsl
memory corruption
application crash
remote code execution
denial of service
nvd
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7
Confidence
High
EPSS
0.026
Percentile
90.3%
The OpenGL implementation in Apple Mac OS X before 10.7.3 does not properly perform OpenGL Shading Language (aka GLSL) compilation, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted program.
Affected configurations
Node
applemac_os_xRange≤10.7.2
ORapplemac_os_xMatch10.6.0
ORapplemac_os_xMatch10.6.1
ORapplemac_os_xMatch10.6.2
ORapplemac_os_xMatch10.6.3
ORapplemac_os_xMatch10.6.4
ORapplemac_os_xMatch10.6.5
ORapplemac_os_xMatch10.6.6
ORapplemac_os_xMatch10.6.7
ORapplemac_os_xMatch10.6.8
ORapplemac_os_xMatch10.7.0
ORapplemac_os_xMatch10.7.1
ORapplemac_os_x_serverRange≤10.7.2
ORapplemac_os_x_serverMatch10.6.0
ORapplemac_os_x_serverMatch10.6.1
ORapplemac_os_x_serverMatch10.6.2
ORapplemac_os_x_serverMatch10.6.3
ORapplemac_os_x_serverMatch10.6.4
ORapplemac_os_x_serverMatch10.6.5
ORapplemac_os_x_serverMatch10.6.6
ORapplemac_os_x_serverMatch10.6.7
ORapplemac_os_x_serverMatch10.6.8
ORapplemac_os_x_serverMatch10.7.0
ORapplemac_os_x_serverMatch10.7.1
| Vendor | Product | Version | CPE |
|---|---|---|---|
| apple | mac_os_x | * | cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:* |
| apple | mac_os_x | 10.6.0 | cpe:2.3:o:apple:mac_os_x:10.6.0:*:*:*:*:*:*:* |
| apple | mac_os_x | 10.6.1 | cpe:2.3:o:apple:mac_os_x:10.6.1:*:*:*:*:*:*:* |
| apple | mac_os_x | 10.6.2 | cpe:2.3:o:apple:mac_os_x:10.6.2:*:*:*:*:*:*:* |
| apple | mac_os_x | 10.6.3 | cpe:2.3:o:apple:mac_os_x:10.6.3:*:*:*:*:*:*:* |
| apple | mac_os_x | 10.6.4 | cpe:2.3:o:apple:mac_os_x:10.6.4:*:*:*:*:*:*:* |
| apple | mac_os_x | 10.6.5 | cpe:2.3:o:apple:mac_os_x:10.6.5:*:*:*:*:*:*:* |
| apple | mac_os_x | 10.6.6 | cpe:2.3:o:apple:mac_os_x:10.6.6:*:*:*:*:*:*:* |
| apple | mac_os_x | 10.6.7 | cpe:2.3:o:apple:mac_os_x:10.6.7:*:*:*:*:*:*:* |
| apple | mac_os_x | 10.6.8 | cpe:2.3:o:apple:mac_os_x:10.6.8:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2011-3457
2012-02-02 18:00:00
prion
prion
Memory corruption
2012-02-02 18:55:00
nvd
nvd
CVE-2011-3457
2012-02-02 18:55:01
nessus
nessus
Mac OS X Multiple Vulnerabilities (Security Update 2012-001) (BEAST)
2012-02-02 00:00:00
Mac OS X 10.7.x < 10.7.3 Multiple Vulnerabilities (BEAST)
2012-02-02 00:00:00
Apple iOS < 6.0 Multiple Vulnerabilities
2012-09-24 00:00:00
securityvulns
securityvulns
Apple OS X multiple security vulnerabilities
2012-02-03 00:00:00
APPLE-SA-2012-02-01-1 OS X Lion v10.7.3 and Security Update 2012-001
2012-02-03 00:00:00
Apple iOS multiple security vulnerabilities
2012-09-24 00:00:00
openvas
openvas
Mac OS X Multiple Vulnerabilities (2012-001)
2012-02-06 00:00:00
Mac OS X Multiple Vulnerabilities (2012-001)
2012-02-06 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7
Confidence
High
EPSS
0.026
Percentile
90.3%
Related for CVE-2011-3457