10
CVE-2011-1300
- EPSS 2.98%
- Veröffentlicht 15.04.2011 19:55:00
- Zuletzt bearbeitet 16.06.2026 23:29:06
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
The Program::getActiveUniformMaxLength function in libGLESv2/Program.cpp in libGLESv2.dll in the WebGLES library in Almost Native Graphics Layer Engine (ANGLE), as used in Mozilla Firefox 4.x before 4.0.1 on Windows and in the GPU process in Google Chrome before 10.0.648.205 on Windows, allows remote attackers to execute arbitrary code via unspecified vectors, related to an "off-by-three" error.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 2.98% | 0.855 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 10 | 10 | 10 |
AV:N/AC:L/Au:N/C:C/I:C/A:C
|
http://googlechromereleases.blogspot.com/2011/04/stable-channel-update.html
http://secunia.com/advisories/44141
http://code.google.com/p/angleproject/source/detail?r=611
http://code.google.com/p/chromium/issues/detail?id=70070
http://www.mozilla.org/security/announce/2011/mfsa2011-17.html
http://www.securityfocus.com/bid/47377
http://www.securitytracker.com/id?1025377
http://www.vupen.com/english/advisories/2011/1006
https://bugzilla.mozilla.org/show_bug.cgi?id=623791
https://exchange.xforce.ibmcloud.com/vulnerabilities/66766
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14466