CVE-2011-1691 in Chromeinformazioni

Riassunto

di MITRE

The counterToCSSValue function in CSSComputedStyleDeclaration.cpp in the Cascading Style Sheets (CSS) implementation in WebCore in WebKit before r82222, as used in Google Chrome before 11.0.696.43 and other products, does not properly handle access to the (1) counterIncrement and (2) counterReset attributes of CSSStyleDeclaration data provided by a getComputedStyle method call, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via crafted JavaScript code.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Prenotare

14/04/2011

Divulgazione

14/04/2011

Moderazione

accettato

Voce

VDB-57125

CPE

pronto

CWE

CWE-476 (confermato)

CVSS

5.0 (NVD)

EPSS

0.01582

KEV

Attività

molto basso

Settore

Lawfirm, Pharma, ...

Fonti

MITRE	https://www.cve.org/CVERecord?id=CVE-2011-1691
NVD	https://nvd.nist.gov/vuln/detail/CVE-2011-1691
CVE Details	https://www.cvedetails.com/cve/CVE-2011-1691/

◂ Precedente Visione D'ensemble Il prossimo ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!