Lucene search

K
cveMitreCVE-2012-6041
HistoryNov 26, 2012 - 10:55 p.m.

CVE-2012-6041

2012-11-2622:55:01
CWE-399
mitre
web.nvd.nist.gov
20
cve-2012-6041
double free
greenbrowser
remote code execution
crafted iframe

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

7.8

Confidence

High

EPSS

0.107

Percentile

95.2%

Double free vulnerability in GreenBrowser before 6.0.1002, when the keyword search bar (F6) is activated, allows remote attackers to execute arbitrary code via a crafted iframe.

Affected configurations

Nvd
Node
morequickgreenbrowserRange6.0.1001
VendorProductVersionCPE
morequickgreenbrowser*cpe:2.3:a:morequick:greenbrowser:*:*:*:*:*:*:*:*

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

7.8

Confidence

High

EPSS

0.107

Percentile

95.2%

Related for CVE-2012-6041