CVE-2011-0473 — Google Chrome vulnerability

10 documents4 sources

Severity

10.0CRITICALNVD

EPSS

2.6%

top 14.28%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Google Chrome Google Chrome OS

Timeline

PublishedJan 14

Latest updateMay 13

Description

Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly handle Cascading Style Sheets (CSS) token sequences in conjunction with CANVAS elements, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to a "stale pointer."

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages2 packages

▶NVDgoogle/chrome< 8.0.552.237

▶NVDgoogle/chrome_os< 8.0.552.344

🔴Vulnerability Details

GHSA

GHSA-m7v3-mv82-7x4h: Google Chrome before 8↗2022-05-13

▶

CVEList

CVE-2011-0473: Google Chrome before 8↗2011-01-14

▶

💬Community

Bugzilla

CVE-2011-0080 Mozilla memory safety issue (MFSA 2011-12)↗2011-04-29

▶

Bugzilla

CVE-2011-0074 Mozilla crash from several marquee elements (MFSA 2011-12)↗2011-04-28

▶

Bugzilla

CVE-2011-0078 Mozilla OOM condition arbitrary memory write (MFSA 2011-12)↗2011-04-28

▶

Bugzilla

CVE-2011-0073 Mozilla dangling pointer flaw (MFSA 2011-13)↗2011-04-28

▶

Bugzilla

CVE-2011-0072 Mozilla use after free flaw (MFSA 2011-12)↗2011-04-28

▶