10

CVE-2011-1300

The Program::getActiveUniformMaxLength function in libGLESv2/Program.cpp in libGLESv2.dll in the WebGLES library in Almost Native Graphics Layer Engine (ANGLE), as used in Mozilla Firefox 4.x before 4.0.1 on Windows and in the GPU process in Google Chrome before 10.0.648.205 on Windows, allows remote attackers to execute arbitrary code via unspecified vectors, related to an "off-by-three" error.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
MozillaFirefox Version4.0
   MicrosoftWindows Version-
MozillaFirefox Version4.0 Updatebeta1
   MicrosoftWindows Version-
MozillaFirefox Version4.0 Updatebeta10
   MicrosoftWindows Version-
MozillaFirefox Version4.0 Updatebeta11
   MicrosoftWindows Version-
MozillaFirefox Version4.0 Updatebeta12
   MicrosoftWindows Version-
MozillaFirefox Version4.0 Updatebeta2
   MicrosoftWindows Version-
MozillaFirefox Version4.0 Updatebeta3
   MicrosoftWindows Version-
MozillaFirefox Version4.0 Updatebeta4
   MicrosoftWindows Version-
MozillaFirefox Version4.0 Updatebeta5
   MicrosoftWindows Version-
MozillaFirefox Version4.0 Updatebeta6
   MicrosoftWindows Version-
MozillaFirefox Version4.0 Updatebeta7
   MicrosoftWindows Version-
MozillaFirefox Version4.0 Updatebeta8
   MicrosoftWindows Version-
MozillaFirefox Version4.0 Updatebeta9
   MicrosoftWindows Version-
GoogleChrome Version < 10.0.648.205
   MicrosoftWindows Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 7.23% 0.912
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 10 10 10
AV:N/AC:L/Au:N/C:C/I:C/A:C
http://www.securityfocus.com/bid/47377
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id?1025377
Third Party Advisory
VDB Entry