Executive Summary

Informations
Name CVE-2011-0777 First vendor Publication 2011-02-04
Vendor Cve Last vendor Modification 2024-11-21

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
 
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:P/I:P/A:P)
Cvss Base Score 7.5 Attack Range Network
Cvss Impact Score 6.4 Attack Complexity Low
Cvss Expoit Score 10 Authentication None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Use-after-free vulnerability in Google Chrome before 9.0.597.84 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to image loading.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0777

CWE : Common Weakness Enumeration

% Id Name
100 % CWE-416 Use After Free

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:14514
 
Oval ID: oval:org.mitre.oval:def:14514
Title: Use-after-free vulnerability in Google Chrome before 9.0.597.84 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to image loading.
Description: Use-after-free vulnerability in Google Chrome before 9.0.597.84 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to image loading.
Family: windows Class: vulnerability
Reference(s): CVE-2011-0777
 Version: 15
Platform(s): Microsoft Windows 7
Microsoft Windows Server 2008
Microsoft Windows Vista
Microsoft Windows Server 2003
Microsoft Windows XP
Microsoft Windows 2000
 Product(s): Google Chrome
Definition Synopsis:

CPE : Common Platform Enumeration

TypeDescriptionCount
Application 1071

OpenVAS Exploits

Date Description
2011-03-07 Name : Debian Security Advisory DSA 2166-1 (chromium-browser)
File : nvt/deb_2166_1.nasl
2011-02-08 Name : Google Chrome multiple vulnerabilities - February 11(Linux)
File : nvt/gb_google_chrome_mult_vuln_feb11_lin.nasl
2011-02-08 Name : Google Chrome multiple vulnerabilities - February 11(Windows)
File : nvt/gb_google_chrome_mult_vuln_feb11_win.nasl

Open Source Vulnerability Database (OSVDB)

Id Description
70990 Google Chrome Image Loading Use-after-free DoS

Google Chrome contains a use-after-free flaw that may allow a remote denial of service. The issue is triggered when the program fails to properly handle image loading, and will result in loss of availability for the program.

Nessus® Vulnerability Scanner

Date Description
2011-02-20 Name : The remote Debian host is missing a security-related update.
File : debian_DSA-2166.nasl - Type : ACT_GATHER_INFO
2011-02-04 Name : The remote host contains a web browser that is affected by multiple vulnerabi...
File : google_chrome_9_0_597_84.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

http://code.google.com/p/chromium/issues/detail?id=55831
http://googlechromereleases.blogspot.com/2011/02/stable-channel-update.html
http://secunia.com/advisories/43368
http://www.debian.org/security/2011/dsa-2166
http://www.vupen.com/english/advisories/2011/0408
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.ova...
Source Url

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
7
8
9
10
11
12
Date Informations
2024-11-28 23:06:11
  • Multiple Updates
2024-11-28 12:24:52
  • Multiple Updates
2021-05-05 01:09:12
  • Multiple Updates
2021-05-04 12:17:03
  • Multiple Updates
2021-04-22 01:20:05
  • Multiple Updates
2020-09-29 01:06:23
  • Multiple Updates
2020-06-05 05:22:40
  • Multiple Updates
2020-05-23 01:43:54
  • Multiple Updates
2020-05-23 00:27:49
  • Multiple Updates
2017-09-19 09:24:14
  • Multiple Updates
2016-04-26 20:33:39
  • Multiple Updates
2014-02-17 11:00:34
  • Multiple Updates
2013-05-10 22:54:53
  • Multiple Updates