Lucene search

[email protected]NVD:CVE-2011-2600

HistoryJun 30, 2011 - 3:55 p.m.

CVE-2011-2600

2011-06-3015:55:04

CWE-264

[email protected]

web.nvd.nist.gov

CVSS2

7.1

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

AI Score

6.4

Confidence

High

EPSS

0.002

Percentile

59.0%

JSON

The GPU support functionality in Windows XP does not properly restrict rendering time, which allows remote attackers to cause a denial of service (system crash) via vectors involving WebGL and (1) shader programs or (2) complex 3D geometry, as demonstrated by using Mozilla Firefox or Google Chrome to visit the lots-of-polys-example.html test page in the Khronos WebGL SDK.

Affected configurations

Nvd

Node

microsoftwindows_xp

VendorProductVersionCPE
microsoftwindows_xp*cpe:2.3:o:microsoft:windows_xp:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
microsoft	windows_xp	*	cpe:2.3:o:microsoft:windows_xp::::::::

References

www.contextis.com/resources/blog/webgl/

CVSS2

7.1

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

AI Score

6.4

Confidence

High

EPSS

0.002

Percentile

59.0%

JSON

Related for NVD:CVE-2011-2600

cve1 prion1 cvelist1