Lucene search

[email protected]CVE-2011-3969

HistoryFeb 09, 2012 - 4:10 a.m.

CVE-2011-3969

2012-02-0904:10:29

CWE-416

[email protected]

web.nvd.nist.gov

cve-2011-3969

google chrome

remote attackers

denial of service

vulnerability

svg documents

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

7 High

AI Score

Confidence

High

0.055 Low

EPSS

Percentile

93.3%

JSON

Use-after-free vulnerability in Google Chrome before 17.0.963.46 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to layout of SVG documents.

Affected configurations

NVD

Node

googlechromeRange<17.0.963.46

Node

appleitunesRange<10.7

applesafariRange<6.0

appleiphone_osRange<6.0

CPENameOperatorVersion
google:chromegoogle chromelt17.0.963.46

CPE	Name	Operator	Version
google:chrome	google chrome	lt	17.0.963.46

References

code.google.com/p/chromium/issues/detail?id=110112

googlechromereleases.blogspot.com/2012/02/stable-channel-update.html

lists.apple.com/archives/security-announce/2012/Jul/msg00000.html

lists.apple.com/archives/security-announce/2012/Sep/msg00001.html

lists.apple.com/archives/security-announce/2012/Sep/msg00003.html

support.apple.com/kb/HT5400

support.apple.com/kb/HT5485

support.apple.com/kb/HT5503

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14917

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

7 High

AI Score

Confidence

High

0.055 Low

EPSS

Percentile

93.3%

JSON

Related for CVE-2011-3969

ubuntucve1 debiancve1 prion1 nvd1 cvelist1 openvas14 nessus13 freebsd1 chrome1 threatpost1 gentoo1 securityvulns1