Lucene search

[email protected]CVE-2011-0779

HistoryFeb 04, 2011 - 6:00 p.m.

CVE-2011-0779

2011-02-0418:00:03

CWE-20

[email protected]

web.nvd.nist.gov

cve-2011-0779

google chrome

denial of service

application crash

security vulnerability

nvd

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.1 Medium

AI Score

Confidence

High

0.011 Low

EPSS

Percentile

84.8%

JSON

Google Chrome before 9.0.597.84 does not properly handle a missing key in an extension, which allows remote attackers to cause a denial of service (application crash) via a crafted extension.

Affected configurations

NVD

Node

googlechromeRange<9.0.597.84

Node

debiandebian_linuxMatch6.0

debiandebian_linuxMatch7.0

CPENameOperatorVersion
google:chromegoogle chromelt9.0.597.84

CPE	Name	Operator	Version
google:chrome	google chrome	lt	9.0.597.84

References

code.google.com/p/chromium/issues/detail?id=62791

googlechromereleases.blogspot.com/2011/02/stable-channel-update.html

secunia.com/advisories/43782

www.debian.org/security/2011/dsa-2192

www.vupen.com/english/advisories/2011/0671

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14540

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.1 Medium

AI Score

Confidence

High

0.011 Low

EPSS

Percentile

84.8%

JSON

Related for CVE-2011-0779

cvelist1 prion1 debiancve1 ubuntucve1 nvd1 debian2 securityvulns2 openvas6 osv1 nessus2