Lucene search

PRIOn knowledge basePRION:CVE-2011-1293

HistoryMar 25, 2011 - 7:55 p.m.

Design/Logic Flaw

2011-03-2519:55:00

PRIOn knowledge base

www.prio-n.com

7.5 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.01 Low

EPSS

Percentile

83.1%

JSON

Use-after-free vulnerability in the HTMLCollection implementation in Google Chrome before 10.0.648.204 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.

CPENameOperatorVersion
iphone_oslt5.0
ituneslt10.5
safarilt5.0.6
debian_linuxeq7.0
debian_linuxeq6.0
chromelt10.0.648.204

Name	Operator	Version
iphone_os	lt	5.0
itunes	lt	10.5
safari	lt	5.0.6
debian_linux	eq	7.0
debian_linux	eq	6.0
chrome	lt	10.0.648.204

References

lists.apple.com/archives/security-announce/2011//Jul/msg00002.html

lists.apple.com/archives/Security-announce/2011//Oct/msg00000.html

lists.apple.com/archives/Security-announce/2011//Oct/msg00001.html

secunia.com/advisories/43859

support.apple.com/kb/HT4808

support.apple.com/kb/HT4981

support.apple.com/kb/HT4999

www.debian.org/security/2011/dsa-2245

www.securityfocus.com/bid/47029

www.vupen.com/english/advisories/2011/0765

code.google.com/p/chromium/issues/detail?id=73595

exchange.xforce.ibmcloud.com/vulnerabilities/66300

googlechromereleases.blogspot.com/2011/03/stable-channel-update.html

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14367

7.5 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.01 Low

EPSS

Percentile

83.1%

JSON

Related for PRION:CVE-2011-1293