CVE-2011-3079

EPSS 0.83%
Veröffentlicht 01.05.2012 10:12:04
Zuletzt bearbeitet 11.04.2025 00:51:21
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

The Inter-process Communication (IPC) implementation in Google Chrome before 18.0.1025.168, as used in Mozilla Firefox before 38.0 and other products, does not properly validate messages, which has unspecified impact and attack vectors.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 19

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Opensuse ≫ Opensuse Version13.1

Opensuse ≫ Opensuse Version13.2

Google ≫ Chrome Version <= 18.0.1025.166

Mozilla ≫ Firefox Version <= 37.0.2

Mozilla ≫ Firefox ESR Version <= 31.6

Mozilla ≫ Seamonkey Version <= 2.33.0

Mozilla ≫ Thunderbird Version <= 31.6

Mozilla ≫ Thunderbird Version <= 38.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.83%	0.735

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	10	10	10	AV:N/AC:L/Au:N/C:C/I:C/A:C

http://googlechromereleases.blogspot.com/2012/04/stable-channel-update_30.html

http://secunia.com/advisories/48992

http://www.securityfocus.com/bid/53309

http://www.securitytracker.com/id?1027001

http://code.google.com/p/chromium/issues/detail?id=117627

http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00012.html

http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00031.html

http://lists.opensuse.org/opensuse-updates/2015-05/msg00036.html

http://osvdb.org/81645

http://rhn.redhat.com/errata/RHSA-2015-1012.html

http://www.debian.org/security/2015/dsa-3260

http://www.mozilla.org/security/announce/2015/mfsa2015-57.html

https://bugzilla.mozilla.org/show_bug.cgi?id=1087565

https://exchange.xforce.ibmcloud.com/vulnerabilities/75271

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14964

https://www.mozilla.org/en-US/security/known-vulnerabilities/thunderbird/#thunderbird31.7

https://nvd.nist.gov/vuln/detail/CVE-2011-3079

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2011-3079

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2011-3079

EUVD