CVE-2011-0475 — Use After Free in Google Chrome

CWE-416 — Use After Free12 documents4 sources

Severity

9.3CRITICALNVD

EPSS

5.4%

top 9.89%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Google Chrome Google Chrome OS

Timeline

PublishedJan 14

Latest updateMay 13

Description

Use-after-free vulnerability in Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a PDF document.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages2 packages

▶NVDgoogle/chrome< 8.0.552.237

▶NVDgoogle/chrome_os< 8.0.552.344

🔴Vulnerability Details

GHSA

GHSA-wv87-jf7q-r6r9: Use-after-free vulnerability in Google Chrome before 8↗2022-05-13

▶

CVEList

CVE-2011-0475: Use-after-free vulnerability in Google Chrome before 8↗2011-01-14

▶

💬Community

Bugzilla

CVE-2011-1187 CVE-2012-0475 Multiple flaws in Firefox 12 which do not affect firefox 10.0.4 ESR↗2012-04-23

▶

Bugzilla

CVE-2011-0074 Mozilla crash from several marquee elements (MFSA 2011-12)↗2011-04-28

▶

Bugzilla

CVE-2011-0078 Mozilla OOM condition arbitrary memory write (MFSA 2011-12)↗2011-04-28

▶

Bugzilla

CVE-2011-0073 Mozilla dangling pointer flaw (MFSA 2011-13)↗2011-04-28

▶

Bugzilla

CVE-2011-0077 Mozilla integer overflow in frameset spec (MFSA 2011-12)↗2011-04-28

▶