CVE-2011-0992

Currently unrated

Key Information:

Vendor: Novell
Status: Moonlight; Mono
Vendor: CVE Published:; 13 April 2011

Summary

Use-after-free vulnerability in Mono, when Moonlight 2.x before 2.4.1 or 3.x before 3.99.3 is used, allows remote attackers to cause a denial of service (plugin crash) or obtain sensitive information via vectors related to member data in a resurrected MonoThread instance.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/66627

vdb-entryx_refsource_XF

https://bugzilla.novell.com/show_bug.cgi?id=678515

x_refsource_CONFIRM

https://bugzilla.novell.com/show_bug.cgi?id=667077

x_refsource_CONFIRM

EPSS Score

2% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Apr 13, 2011
Vulnerability Reserved
Feb 14, 2011

Collectors

NVD DatabaseMitre Database