CVE-2011-3886

Loading...

General

Score:6.8/10.0
Severity:Medium
Category:Input Validation Error

Impact Metrics

Confidentiality:Partial
Integrity:Partial
Availability:Partial

Exploitability Metrics

Access Vector:Network
Access Complexity:Medium
Authentication:None

Published on 25/10/11 - Updated on 19/09/17

Description

Google V8, as used in Google Chrome before 15.0.874.102, allows remote attackers to cause a denial of service or possibly have unspecified other impact via crafted JavaScript code that triggers out-of-bounds write operations.

Category: Input Validation Error

CWE-20 (Input Validation)
The product does not validate or incorrectly validates input that can affect the control flow or data flow of a program.

Security Notices

US National Vulnerability DatabaseCVE-2011-3886
Agence Nationale de la Sécurité des Systèmes d'Information CERTA-2011-AVI-593

Exploits

No exploits available for this CVE in our database.

Relative technologies

VendorProduct
googlev8

Share this vulnerability with:

Twitter Facebook LinkedIn Mail