Lucene search

[email protected]CVE-2011-3234

HistorySep 19, 2011 - 12:02 p.m.

CVE-2011-3234

2011-09-1912:02:56

CWE-125

[email protected]

web.nvd.nist.gov

google chrome

denial of service

vulnerability

cve-2011-3234

out-of-bounds read

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.2 Medium

AI Score

Confidence

Low

0.015 Low

EPSS

Percentile

87.1%

JSON

Google Chrome before 14.0.835.163 does not properly handle boxes, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.

Affected configurations

NVD

Node

googlechromeRange<14.0.835.163

Node

appleitunesRange<10.5

applesafariRange<5.1.1

appleiphone_osRange<5.0

CPENameOperatorVersion
google:chromegoogle chromelt14.0.835.163

CPE	Name	Operator	Version
google:chrome	google chrome	lt	14.0.835.163

References

code.google.com/p/chromium/issues/detail?id=89991

googlechromereleases.blogspot.com/2011/09/stable-channel-update_16.html

lists.apple.com/archives/Security-announce/2011//Oct/msg00000.html

lists.apple.com/archives/Security-announce/2011//Oct/msg00001.html

lists.apple.com/archives/Security-announce/2011//Oct/msg00004.html

osvdb.org/75550

support.apple.com/kb/HT4981

support.apple.com/kb/HT4999

support.apple.com/kb/HT5000

exchange.xforce.ibmcloud.com/vulnerabilities/69876

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14224

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.2 Medium

AI Score

Confidence

Low

0.015 Low

EPSS

Percentile

87.1%

JSON

Related for CVE-2011-3234

cvelist1 nvd1 debiancve1 prion1 ubuntucve1 openvas14 nessus8 threatpost1 chrome1 securityvulns6 gentoo1 seebug1 freebsd1