Lucene search
Copyright (C) 2011 Greenbone AGOPENVAS:1361412562310801773HistoryApr 22, 2011 - 12:00 a.m.
Google Chrome 'WebKit' CSS Implementation DoS Vulnerability - Windows
2011-04-2200:00:00
Copyright (C) 2011 Greenbone AG
plugins.openvas.org
8
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
AI Score
6.2
Confidence
High
EPSS
0.008
Percentile
81.2%
Google Chrome is prone to a denial of service (DoS) vulnerability.
# SPDX-FileCopyrightText: 2011 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.801773");
script_version("2024-02-15T05:05:39+0000");
script_tag(name:"last_modification", value:"2024-02-15 05:05:39 +0000 (Thu, 15 Feb 2024)");
script_tag(name:"creation_date", value:"2011-04-22 16:38:12 +0200 (Fri, 22 Apr 2011)");
script_cve_id("CVE-2011-1691");
script_tag(name:"cvss_base", value:"5.0");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:N/I:N/A:P");
script_name("Google Chrome 'WebKit' CSS Implementation DoS Vulnerability - Windows");
script_xref(name:"URL", value:"http://code.google.com/p/chromium/issues/detail?id=77665");
script_xref(name:"URL", value:"http://googlechromereleases.blogspot.com/2011/04/beta-channel-update_12.html");
script_copyright("Copyright (C) 2011 Greenbone AG");
script_category(ACT_GATHER_INFO);
script_family("Denial of Service");
script_dependencies("gb_google_chrome_detect_portable_win.nasl");
script_mandatory_keys("GoogleChrome/Win/Ver");
script_tag(name:"impact", value:"Successful exploitation could allow the attackers to cause denial-of-service
via crafted JavaScript code.");
script_tag(name:"affected", value:"Google Chrome version prior to 11.0.696.43");
script_tag(name:"insight", value:"The flaw is due to error in 'counterToCSSValue()' function in
'CSSComputedStyleDeclaration.cpp' in the Cascading Style Sheets (CSS)
implementation in WebCore in WebKit, it does not properly handle access to
the 'counterIncrement', 'counterReset' attributes of CSSStyleDeclaration data
provided by a getComputedStyle method call.");
script_tag(name:"solution", value:"Upgrade to the Google Chrome 11.0.696.43 or later.");
script_tag(name:"summary", value:"Google Chrome is prone to a denial of service (DoS) vulnerability.");
script_tag(name:"qod_type", value:"registry");
script_tag(name:"solution_type", value:"VendorFix");
exit(0);
}
include("version_func.inc");
chromeVer = get_kb_item("GoogleChrome/Win/Ver");
if(!chromeVer){
exit(0);
}
if(version_is_less(version:chromeVer, test_version:"11.0.696.43")){
report = report_fixed_ver(installed_version:chromeVer, fixed_version:"11.0.696.43");
security_message(port: 0, data: report);
}
Related
cvelist
cvelist
CVE-2011-1691
2011-04-15 00:00:00
cve
cve
CVE-2011-1691
2011-04-15 00:55:02
debiancve
debiancve
CVE-2011-1691
2011-04-15 00:55:00
prion
prion
Null pointer dereference
2011-04-15 00:55:00
openvas
openvas
Google Chrome 'Webkit' CSS Implementation DoS Vulnerability - Linux
2011-04-22 00:00:00
Google Chrome 'Webkit' CSS Implementation DoS Vulnerability (Linux)
2011-04-22 00:00:00
Google Chrome 'WebKit' CSS Implementation DoS Vulnerability (Windows)
2011-04-22 00:00:00
nvd
nvd
CVE-2011-1691
2011-04-15 00:55:02
ubuntucve
ubuntucve
CVE-2011-1691
2011-04-15 00:00:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
AI Score
6.2
Confidence
High
EPSS
0.008
Percentile
81.2%
Related for OPENVAS:1361412562310801773