Уязвимость use-after-free и DoS в Google Chrome через использование плавающих элементов
Описание
В версиях Google Chrome до 18.0.1025.168 обнаружена уязвимость времени использования после освобождения (use-after-free), которая позволяет злоумышленникам вызвать DoS атаку или, возможно, оказать другое неуточненное воздействие. Уязвимость связана с использованием плавающих элементов и отличается от уязвимости CVE-2011-3078.
Затронутые версии ПО
- Google Chrome < 18.0.1025.168
Тип уязвимости
- DoS атака
- Неуточненное воздействие
Ссылки
- ExploitVendor Advisory
- Vendor Advisory
- Mailing ListThird Party Advisory
- Mailing ListThird Party Advisory
- Mailing ListThird Party Advisory
- Broken Link
- Third Party Advisory
- Third Party Advisory
- Third Party Advisory
- Third Party Advisory
- Third Party Advisory
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- Third Party Advisory
- ExploitVendor Advisory
- Vendor Advisory
- Mailing ListThird Party Advisory
- Mailing ListThird Party Advisory
- Mailing ListThird Party Advisory
Уязвимые конфигурации
Одно из
EPSS
9.3 Critical
CVSS2
Дефекты
Связанные уязвимости
Use-after-free vulnerability in Google Chrome before 18.0.1025.168 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the floating of elements, a different vulnerability than CVE-2011-3078.
Use-after-free vulnerability in Google Chrome before 18.0.1025.168 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the floating of elements, a different vulnerability than CVE-2011-3078.
Use-after-free vulnerability in Google Chrome before 18.0.1025.168 all ...
Use-after-free vulnerability in Google Chrome before 18.0.1025.168 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the floating of elements, a different vulnerability than CVE-2011-3078.
EPSS
9.3 Critical
CVSS2