Lucene search
Ubuntu.comUB:CVE-2011-0991HistoryApr 13, 2011 - 12:00 a.m.
CVE-2011-0991
2011-04-1300:00:00
ubuntu.com
ubuntu.com
5
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.029 Low
EPSS
Percentile
90.7%
Use-after-free vulnerability in Mono, when Moonlight 2.x before 2.4.1 or
3.x before 3.99.3 is used, allows remote attackers to cause a denial of
service or possibly have unspecified other impact via vectors related to
finalizing and then resurrecting a DynamicMethod instance.
Bugs
Notes
| Author | Note |
|---|---|
| mdeslaur | upstream note: The bug (and fix) is in mono source code but can only be exploited (by untrusted applications) when used by Moonlight. Setting severity to negligible. |
Related
debiancve
debiancve
CVE-2011-0991
2011-04-13 21:55:00
cvelist
cvelist
CVE-2011-0991
2011-04-13 21:00:00
cve
cve
CVE-2011-0991
2011-04-13 21:55:00
prion
prion
Design/Logic Flaw
2011-04-13 21:55:00
nessus
nessus
openSUSE Security Update : libmoon-devel (openSUSE-SU-2011:0313-1)
2014-06-13 00:00:00
openSUSE Security Update : libmoon-devel (openSUSE-SU-2011:0313-1)
2014-06-13 00:00:00
SuSE 11.1 Security Update : moonlight (SAT Patch Number 4246)
2011-04-07 00:00:00
gentoo
gentoo
Mono: Multiple vulnerabilities
2012-06-21 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 201206-13 (mono mono-debugger)
2012-08-10 00:00:00
Gentoo Security Advisory GLSA 201206-13 (mono mono-debugger)
2012-08-10 00:00:00
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.029 Low
EPSS
Percentile
90.7%
Related for UB:CVE-2011-0991