CVE-2011-0990 in Moonlightinfo

Zusammenfassung (Englisch)

Race condition in the FastCopy optimization in the Array.Copy method in metadata/icall.c in Mono, when Moonlight 2.x before 2.4.1 or 3.x before 3.99.3 is used, allows remote attackers to trigger a buffer overflow and modify internal data structures, and cause a denial of service (plugin crash) or corrupt the internal state of the security manager, via a crafted media file in which a thread makes a change after a type check but before a copy action.

Once again VulDB remains the best source for vulnerability data.

Reservieren

14.02.2011

Veröffentlichung

13.04.2011

Status

Bestätigt

Einträge

VulDB provides additional information and datapoints for this CVE:

ID	Schwachstelle	CWE	Aus	Mas	CVE
57114	Novell Moonlight Array.Copy Race Condition	362	Nicht definiert	Offizieller Fix	CVE-2011-0990

Beschreibung

CPE

CWE

CVSS

Exploits

History

Diff

Verknüpfen

Threat Intelligence

API JSON

API XML

API CSV

Quellen

◂ ZurückÜbersichtWeiter ▸

Do you know our Splunk app?

Download it now for free!