CVE-2011-3040

Google Chrome < 17.0.963.65 - Out-of-Bounds Read

Title source: rule

Description

Google Chrome before 17.0.963.65 does not properly handle text, which allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted document.

References (17)

Core 17

Core References

Vendor Advisory x_refsource_confirm

http://code.google.com/p/chromium/issues/detail?id=114054

Third Party Advisory x_refsource_confirm

http://support.apple.com/kb/HT5485

Mailing List, Third Party Advisory vendor-advisory x_refsource_apple

http://lists.apple.com/archives/security-announce/2012/Sep/msg00003.html

Third Party Advisory x_refsource_confirm

http://support.apple.com/kb/HT5503

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id?1026759

Not Applicable third-party-advisory x_refsource_secunia

http://secunia.com/advisories/48527

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/73651

Third Party Advisory vdb-entry signature x_refsource_oval

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14996

Not Applicable third-party-advisory x_refsource_secunia

http://secunia.com/advisories/48265

Not Applicable third-party-advisory x_refsource_secunia

http://secunia.com/advisories/48419

Mailing List, Third Party Advisory vendor-advisory x_refsource_suse

http://lists.opensuse.org/opensuse-security-announce/2012-03/msg00012.html

Mailing List, Third Party Advisory vendor-advisory x_refsource_apple

http://lists.apple.com/archives/security-announce/2012/Sep/msg00001.html

Mailing List, Third Party Advisory vendor-advisory x_refsource_apple

http://lists.apple.com/archives/security-announce/2012/Jul/msg00000.html

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/52271

Third Party Advisory vendor-advisory x_refsource_gentoo

http://security.gentoo.org/glsa/glsa-201203-19.xml

Third Party Advisory x_refsource_confirm

http://support.apple.com/kb/HT5400

Release Notes, Vendor Advisory x_refsource_confirm

http://googlechromereleases.blogspot.com/2012/03/chrome-stable-update.html

Scores

EPSS 0.0266

EPSS Percentile 85.9%

Details

CWE

CWE-125

Status published

Products (5)

apple/iphone_os < 6.0

apple/itunes < 10.7

apple/safari < 6.0

google/chrome < 17.0.963.65

opensuse/opensuse 12.1

Published Mar 05, 2012

Tracked Since Feb 18, 2026