Lucene search

PRIOn knowledge basePRION:CVE-2011-2855

HistorySep 19, 2011 - 12:02 p.m.

Code injection

2011-09-1912:02:00

PRIOn knowledge base

www.prio-n.com

7.7 High

AI Score

Confidence

High

0.028 Low

EPSS

Percentile

90.7%

JSON

Google Chrome before 14.0.835.163 does not properly handle Cascading Style Sheets (CSS) token sequences, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to a “stale node.”

CPENameOperatorVersion
iphone_oslt5.1
ituneslt10.6
safarilt5.1.4
chromelt14.0.835.163

Name	Operator	Version
iphone_os	lt	5.1
itunes	lt	10.6
safari	lt	5.1.4
chrome	lt	14.0.835.163

References

lists.apple.com/archives/security-announce/2012/Mar/msg00000.html

lists.apple.com/archives/security-announce/2012/Mar/msg00001.html

lists.apple.com/archives/security-announce/2012/Mar/msg00003.html

osvdb.org/75557

secunia.com/advisories/48274

secunia.com/advisories/48288

secunia.com/advisories/48377

www.securitytracker.com/id?1026774

code.google.com/p/chromium/issues/detail?id=92959

exchange.xforce.ibmcloud.com/vulnerabilities/69882

googlechromereleases.blogspot.com/2011/09/stable-channel-update_16.html

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14485