[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

248392

 
 

909

 
 

195452

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2011-1202Date: (C)2011-03-10   (M)2023-12-22


The xsltGenerateIdFunction function in functions.c in libxslt 1.1.26 and earlier, as used in Google Chrome before 10.0.648.127 and other products, allows remote attackers to obtain potentially sensitive information about heap memory addresses via an XML document containing a call to the XSLT generate-id XPath function.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 4.3
Exploit Score: 8.6
Impact Score: 2.9
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality: PARTIAL
Integrity: NONE
Availability: NONE
  
Reference:
BID-46785
ADV-2011-0628
MDVSA-2011:079
MDVSA-2012:164
google-xslt-info-disclosure(65966)
http://code.google.com/p/chromium/issues/detail?id=73716
http://downloads.avaya.com/css/P8/documents/100144158
http://git.gnome.org/browse/libxslt/commit/?id=ecb6bcb8d1b7e44842edde3929f412d46b40c89f
http://googlechromereleases.blogspot.com/2011/03/chrome-stable-release.html
http://scarybeastsecurity.blogspot.com/2011/03/multi-browser-heap-address-leak-in-xslt.html
https://bugzilla.redhat.com/show_bug.cgi?id=684386
oval:org.mitre.oval:def:14244

CPE    2
cpe:/a:xmlsoft:libxslt
cpe:/a:google:chrome
CWE    1
CWE-200
OVAL    26
oval:org.secpod.oval:def:700507
oval:org.secpod.oval:def:400009
oval:org.secpod.oval:def:201463
oval:org.secpod.oval:def:200598
...

© SecPod Technologies