Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-2600

Overview

Vulnerability Score 7.1 7.1
CVE Id CVE-2011-2600
Last Modified 12 Jul 2011 12:00:00
Published 30 Jun 2011 11:55:04
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2011-2600

Summary

The GPU support functionality in Windows XP does not properly restrict rendering time, which allows remote attackers to cause a denial of service (system crash) via vectors involving WebGL and (1) shader programs or (2) complex 3D geometry, as demonstrated by using Mozilla Firefox or Google Chrome to visit the lots-of-polys-example.html test page in the Khronos WebGL SDK.

Vulnerable Systems

Operating System

  • Microsoft Windows Xp


References

MISC - http://www.contextis.com/resources/blog/webgl/


Last Updated: 27 May 2016 10:57:03