Lucene search

K
cvelistMitreCVELIST:CVE-2011-1202
HistoryMar 11, 2011 - 1:00 a.m.

CVE-2011-1202

2011-03-1101:00:00
mitre
www.cve.org

9.2 High

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

72.7%

The xsltGenerateIdFunction function in functions.c in libxslt 1.1.26 and earlier, as used in Google Chrome before 10.0.648.127 and other products, allows remote attackers to obtain potentially sensitive information about heap memory addresses via an XML document containing a call to the XSLT generate-id XPath function.