Lucene search
K

Google Chrome 'Webkit' CSS Implementation DoS Vulnerability - Linux

🗓️ 22 Apr 2011 00:00:00Reported by Copyright (C) 2011 Greenbone AGType 
openvas
 openvas
🔗 plugins.openvas.org👁 21 Views

Google Chrome 'Webkit' CSS Implementation DoS Vulnerability on Linux. Denial-of-Service via crafted JavaScript code

Related
Refs
Code
ReporterTitlePublishedViews
Family
ATTACKERKB
CVE-2011-1691
15 Apr 201100:55
attackerkb
CVE
CVE-2011-1691
15 Apr 201100:00
cve
Cvelist
CVE-2011-1691
15 Apr 201100:00
cvelist
Debian CVE
CVE-2011-1691
15 Apr 201100:00
debiancve
EUVD
EUVD-2011-1691
7 Oct 202500:30
euvd
NVD
CVE-2011-1691
15 Apr 201100:55
nvd
OpenVAS
Google Chrome 'WebKit' CSS Implementation DoS Vulnerability - Windows
22 Apr 201100:00
openvas
OpenVAS
Google Chrome 'WebKit' CSS Implementation DoS Vulnerability (Windows)
22 Apr 201100:00
openvas
OpenVAS
Google Chrome 'Webkit' CSS Implementation DoS Vulnerability (Linux)
22 Apr 201100:00
openvas
OSV
UBUNTU-CVE-2011-1691
15 Apr 201100:55
osv
Rows per page
# SPDX-FileCopyrightText: 2011 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.801774");
  script_version("2024-02-15T05:05:39+0000");
  script_tag(name:"last_modification", value:"2024-02-15 05:05:39 +0000 (Thu, 15 Feb 2024)");
  script_tag(name:"creation_date", value:"2011-04-22 16:38:12 +0200 (Fri, 22 Apr 2011)");
  script_cve_id("CVE-2011-1691");
  script_tag(name:"cvss_base", value:"5.0");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:N/I:N/A:P");
  script_name("Google Chrome 'Webkit' CSS Implementation DoS Vulnerability - Linux");
  script_xref(name:"URL", value:"http://code.google.com/p/chromium/issues/detail?id=77665");
  script_xref(name:"URL", value:"http://googlechromereleases.blogspot.com/2011/04/beta-channel-update_12.html");

  script_copyright("Copyright (C) 2011 Greenbone AG");
  script_category(ACT_GATHER_INFO);
  script_family("Denial of Service");
  script_dependencies("gb_google_chrome_detect_lin.nasl");
  script_mandatory_keys("Google-Chrome/Linux/Ver");
  script_tag(name:"impact", value:"Successful exploitation could allow the attackers to cause denial-of-service
  via crafted JavaScript code.");
  script_tag(name:"affected", value:"Google Chrome version prior to 11.0.696.43");
  script_tag(name:"insight", value:"The flaw is due to error in 'counterToCSSValue()' function in
  'CSSComputedStyleDeclaration.cpp' in the Cascading Style Sheets (CSS)
  implementation in WebCore in WebKit, does not properly handle access to the
  'counterIncrement', 'counterReset' attributes of CSSStyleDeclaration data
  provided by a getComputedStyle method call.");
  script_tag(name:"solution", value:"Upgrade to the Google Chrome 11.0.696.43 or later.");
  script_tag(name:"summary", value:"Google Chrome is prone to a denial of service (DoS) vulnerability.");
  script_tag(name:"qod_type", value:"executable_version");
  script_tag(name:"solution_type", value:"VendorFix");

  exit(0);
}


include("version_func.inc");

chromeVer = get_kb_item("Google-Chrome/Linux/Ver");
if(!chromeVer){
  exit(0);
}

if(version_is_less(version:chromeVer, test_version:"11.0.696.43")){
  report = report_fixed_ver(installed_version:chromeVer, fixed_version:"11.0.696.43");
  security_message(port: 0, data: report);
}

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

15 Feb 2024 00:00Current
6.2Medium risk
Vulners AI Score6.2
CVSS 25
EPSS0.01582
21