7.5

CVE-2011-3064

Use-after-free vulnerability in Google Chrome before 18.0.1025.142 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to SVG clipping.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
GoogleChrome Version < 18.0.1025.142
AppleiTunes Version < 10.7
AppleSafari Version < 6.0
AppleiPhone OS Version < 6.0
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 2.13% 0.796
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.5 10 6.4
AV:N/AC:L/Au:N/C:P/I:P/A:P
CWE-416 Use After Free

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

http://lists.apple.com/archives/security-announce/2012/Sep/msg00003.html
Third Party Advisory
Mailing List
http://support.apple.com/kb/HT5503
Third Party Advisory
http://lists.apple.com/archives/security-announce/2012/Jul/msg00000.html
Third Party Advisory
Mailing List
http://support.apple.com/kb/HT5400
Third Party Advisory
http://lists.apple.com/archives/security-announce/2012/Sep/msg00001.html
Third Party Advisory
Mailing List
http://support.apple.com/kb/HT5485
Third Party Advisory
http://secunia.com/advisories/48618
Not Applicable
http://secunia.com/advisories/48691
Not Applicable
http://secunia.com/advisories/48763
Not Applicable
http://www.securitytracker.com/id?1026877
Third Party Advisory
VDB Entry
http://googlechromereleases.blogspot.com/2012/03/stable-channel-release-and-beta-channel.html
Vendor Advisory
http://www.securityfocus.com/bid/52762
Third Party Advisory
VDB Entry
http://code.google.com/p/chromium/issues/detail?id=117471
Vendor Advisory
http://osvdb.org/80742
Broken Link
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14755
Third Party Advisory