CVE-2011-4692

Опубликовано: 07 дек. 2011

Источник: ubuntu

Приоритет: low

EPSS Низкий

CVSS2: 5

Описание

WebKit, as used in Apple Safari 5.1.1 and earlier and Google Chrome 15 and earlier, does not prevent capture of data about the time required for image loading, which makes it easier for remote attackers to determine whether an image exists in the browser cache via crafted JavaScript code, as demonstrated by visipisi.

Релиз	Статус	Примечание
devel	ignored	no update available
esm-apps/xenial	ignored	no update available
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was ignored [no update available]]
hardy	DNE
lucid	DNE
maverick	ignored	end of life
natty	ignored	end of life
oneiric	ignored	end of life
precise	ignored	end of life
quantal	ignored	end of life

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
hardy	ignored	end of life
lucid	ignored	end of life
maverick	ignored	end of life
natty	ignored	end of life
oneiric	ignored	end of life
precise	ignored	end of life
quantal	ignored	end of life
raring	ignored	end of life

Показывать по

Релиз	Статус	Примечание
devel	not-affected	2.4.9-2ubuntu2
esm-apps/xenial	not-affected	2.4.9-2ubuntu2
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was not-affected [2.4.8-1ubuntu1~ubuntu14.04.1]]
lucid	DNE
precise	DNE
quantal	DNE
saucy	DNE
trusty	not-affected	2.4.8-1ubuntu1~ubuntu14.04.1
trusty/esm	DNE	trusty was not-affected [2.4.8-1ubuntu1~ubuntu14.04.1]
upstream	needs-triage

Показывать по

Ссылки на источники

https://www.cve.org/CVERecord?id=CVE-2011-4692

EPSS

Процентиль: 46%

0.0023

Низкий

5 Medium

CVSS2

Связанные уязвимости

CVE-2011-4692

nvd

около 14 лет назад

GHSA-c3h2-qw7j-hgxw

github

больше 3 лет назад

EPSS

Процентиль: 46%

0.0023

Низкий

5 Medium

CVSS2

CVE-2011-4692

Описание

Пакет qtwebkit-source

Пакет webkit

Пакет webkitgtk

Ссылки на источники

Связанные уязвимости