Lucene search

K
cve[email protected]CVE-2011-3895
HistoryNov 11, 2011 - 11:55 a.m.

CVE-2011-3895

2011-11-1111:55:02
CWE-787
web.nvd.nist.gov
39
cve
2011
3895
buffer overflow
vorbis decoder
google chrome
denial of service
nvd

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

9.6 High

AI Score

Confidence

High

0.025 Low

EPSS

Percentile

90.2%

Heap-based buffer overflow in the Vorbis decoder in Google Chrome before 15.0.874.120 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted stream.

Affected configurations

NVD
Node
googlechromeRange<15.0.874.120
Node
debiandebian_linuxMatch6.0

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

9.6 High

AI Score

Confidence

High

0.025 Low

EPSS

Percentile

90.2%