Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-1798

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2011-1798
Last Modified 29 Dec 2014 05:46:56
Published 25 Dec 2014 09:59:04
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2011-1798

Summary

rendering/svg/RenderSVGText.cpp in WebCore in WebKit in Google Chrome before 11.0.696.65 does not properly perform a cast of an unspecified variable during an attempt to handle a block child, which allows remote attackers to cause a denial of service (application crash) or possibly have unknown other impact via a crafted text element in an SVG document.

Vulnerable Systems

Application

  • Google Chrome 11.0.696.64


References

CONFIRM - http://trac.webkit.org/changeset/84085

CONFIRM - http://launchpad.net/bugs/778822

CONFIRM - http://crbug.com/79595


Last Updated: 27 May 2016 11:07:22