CVE-2011-1459

6.5MEDIUM

Key Information:

Vendor: Google
Status: Blink
Vendor: CVE Published:; 5 November 2019

Summary

The WebKit::WebPluginContainerImpl::handleEvent function in Google Chrome before Blink M11 allows an attacker to cause a denial of service (crash) via the htmlpluginelement.cpp plugin.

References

https://bugs.chromium.org/p/chromium/issues/detail?id=76474

x_refsource_MISC

http://trac.webkit.org/changeset/81795

x_refsource_MISC

http://trac.webkit.org/changeset/81891

x_refsource_MISC

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Nov 5, 2019
Vulnerability Reserved
Mar 18, 2011

Collectors

NVD DatabaseMitre Database