Use-After-Free Vulnerability in Moonlight by Novell
CVE-2011-0991

Currently unrated

Key Information:

Vendor: Novell
Status: Moonlight; Mono
Vendor: CVE Published:; 13 April 2011

Summary

The use-after-free vulnerability in Mono's Moonlight allows attackers to manipulate DynamicMethod instances, potentially leading to denial of service and other undefined impacts. By exploiting the flaws associated with finalizing and resurrecting instances, malicious entities can interfere with the application's memory management, jeopardizing operational integrity.

References

https://bugzilla.novell.com/show_bug.cgi?id=660422

x_refsource_CONFIRM

https://github.com/mono/mono/commit/89d1455a80ef13cddee5d...

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/66626

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Apr 13, 2011
Vulnerability Reserved
Feb 14, 2011