Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-1796

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2011-1796
Last Modified 29 Dec 2014 05:34:13
Published 25 Dec 2014 09:59:03
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2011-1796

Summary

Use-after-free vulnerability in the FrameView::calculateScrollbarModesForLayout function in page/FrameView.cpp in WebCore in WebKit in Google Chrome before 11.0.696.65 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via crafted JavaScript code that calls the removeChild method during interaction with a FRAME element.

Vulnerable Systems

Application

  • Google Chrome 11.0.696.64


References

CONFIRM - http://trac.webkit.org/changeset/84300

CONFIRM - http://launchpad.net/bugs/778822

CONFIRM - http://crbug.com/79055


Last Updated: 27 May 2016 11:03:26