cvelistv5 - cve-2011-3895

CVE-2011-3895 (GCVE-0-2011-3895)

Vulnerability from cvelistv5

Published

2011-11-11 11:00

Modified

2024-08-06 23:53

Severity ?

CWE

Summary

Heap-based buffer overflow in the Vorbis decoder in Google Chrome before 15.0.874.120 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted stream.

References

URL

Tags

	chrome-cve-admin@google.com	http://code.google.com/p/chromium/issues/detail?id=101458
	chrome-cve-admin@google.com	http://googlechromereleases.blogspot.com/2011/11/stable-channel-update.html
	chrome-cve-admin@google.com	http://secunia.com/advisories/46933
	chrome-cve-admin@google.com	http://secunia.com/advisories/49089
	chrome-cve-admin@google.com	http://www.debian.org/security/2012/dsa-2471
	chrome-cve-admin@google.com	http://www.mandriva.com/security/advisories?name=MDVSA-2012:074
	chrome-cve-admin@google.com	http://www.mandriva.com/security/advisories?name=MDVSA-2012:075
	chrome-cve-admin@google.com	http://www.mandriva.com/security/advisories?name=MDVSA-2012:076
	chrome-cve-admin@google.com	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13551
	af854a3a-2127-422b-91ae-364da2661108	http://code.google.com/p/chromium/issues/detail?id=101458
	af854a3a-2127-422b-91ae-364da2661108	http://googlechromereleases.blogspot.com/2011/11/stable-channel-update.html
	af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/46933
	af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/49089
	af854a3a-2127-422b-91ae-364da2661108	http://www.debian.org/security/2012/dsa-2471
	af854a3a-2127-422b-91ae-364da2661108	http://www.mandriva.com/security/advisories?name=MDVSA-2012:074
	af854a3a-2127-422b-91ae-364da2661108	http://www.mandriva.com/security/advisories?name=MDVSA-2012:075
	af854a3a-2127-422b-91ae-364da2661108	http://www.mandriva.com/security/advisories?name=MDVSA-2012:076
	af854a3a-2127-422b-91ae-364da2661108	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13551

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T23:53:32.493Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "MDVSA-2012:076",
            "tags": [
              "vendor-advisory",
              "x_refsource_MANDRIVA",
              "x_transferred"
            ],
            "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2012:076"
          },
          {
            "name": "MDVSA-2012:074",
            "tags": [
              "vendor-advisory",
              "x_refsource_MANDRIVA",
              "x_transferred"
            ],
            "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2012:074"
          },
          {
            "name": "MDVSA-2012:075",
            "tags": [
              "vendor-advisory",
              "x_refsource_MANDRIVA",
              "x_transferred"
            ],
            "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2012:075"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://googlechromereleases.blogspot.com/2011/11/stable-channel-update.html"
          },
          {
            "name": "49089",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/49089"
          },
          {
            "name": "DSA-2471",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "http://www.debian.org/security/2012/dsa-2471"
          },
          {
            "name": "46933",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/46933"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://code.google.com/p/chromium/issues/detail?id=101458"
          },
          {
            "name": "oval:org.mitre.oval:def:13551",
            "tags": [
              "vdb-entry",
              "signature",
              "x_refsource_OVAL",
              "x_transferred"
            ],
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13551"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2011-11-10T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Heap-based buffer overflow in the Vorbis decoder in Google Chrome before 15.0.874.120 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted stream."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-09-18T12:57:01",
        "orgId": "ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28",
        "shortName": "Chrome"
      },
      "references": [
        {
          "name": "MDVSA-2012:076",
          "tags": [
            "vendor-advisory",
            "x_refsource_MANDRIVA"
          ],
          "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2012:076"
        },
        {
          "name": "MDVSA-2012:074",
          "tags": [
            "vendor-advisory",
            "x_refsource_MANDRIVA"
          ],
          "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2012:074"
        },
        {
          "name": "MDVSA-2012:075",
          "tags": [
            "vendor-advisory",
            "x_refsource_MANDRIVA"
          ],
          "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2012:075"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://googlechromereleases.blogspot.com/2011/11/stable-channel-update.html"
        },
        {
          "name": "49089",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/49089"
        },
        {
          "name": "DSA-2471",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "http://www.debian.org/security/2012/dsa-2471"
        },
        {
          "name": "46933",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/46933"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://code.google.com/p/chromium/issues/detail?id=101458"
        },
        {
          "name": "oval:org.mitre.oval:def:13551",
          "tags": [
            "vdb-entry",
            "signature",
            "x_refsource_OVAL"
          ],
          "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13551"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "security@google.com",
          "ID": "CVE-2011-3895",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Heap-based buffer overflow in the Vorbis decoder in Google Chrome before 15.0.874.120 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted stream."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "MDVSA-2012:076",
              "refsource": "MANDRIVA",
              "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2012:076"
            },
            {
              "name": "MDVSA-2012:074",
              "refsource": "MANDRIVA",
              "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2012:074"
            },
            {
              "name": "MDVSA-2012:075",
              "refsource": "MANDRIVA",
              "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2012:075"
            },
            {
              "name": "http://googlechromereleases.blogspot.com/2011/11/stable-channel-update.html",
              "refsource": "CONFIRM",
              "url": "http://googlechromereleases.blogspot.com/2011/11/stable-channel-update.html"
            },
            {
              "name": "49089",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/49089"
            },
            {
              "name": "DSA-2471",
              "refsource": "DEBIAN",
              "url": "http://www.debian.org/security/2012/dsa-2471"
            },
            {
              "name": "46933",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/46933"
            },
            {
              "name": "http://code.google.com/p/chromium/issues/detail?id=101458",
              "refsource": "CONFIRM",
              "url": "http://code.google.com/p/chromium/issues/detail?id=101458"
            },
            {
              "name": "oval:org.mitre.oval:def:13551",
              "refsource": "OVAL",
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13551"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28",
    "assignerShortName": "Chrome",
    "cveId": "CVE-2011-3895",
    "datePublished": "2011-11-11T11:00:00",
    "dateReserved": "2011-10-01T00:00:00",
    "dateUpdated": "2024-08-06T23:53:32.493Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "nvd": "{\"cve\":{\"id\":\"CVE-2011-3895\",\"sourceIdentifier\":\"chrome-cve-admin@google.com\",\"published\":\"2011-11-11T11:55:02.600\",\"lastModified\":\"2025-04-11T00:51:21.963\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Heap-based buffer overflow in the Vorbis decoder in Google Chrome before 15.0.874.120 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted stream.\"},{\"lang\":\"es\",\"value\":\"Desbordamiento de b\u00fafer basado en memoria din\u00e1mica en el decodificador de Vorbis en Google Chrome anterior a v15.0.874.120 permite a atacantes remotos causar una denegaci\u00f3n de servicio o posiblemente tener un impacto no especificado a trav\u00e9s de un stream manipulado.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:P/I:P/A:P\",\"baseScore\":7.5,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-787\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"15.0.874.120\",\"matchCriteriaId\":\"1333A524-7ACE-4A53-BF40-494F00E52059\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"036E8A89-7A16-411F-9D31-676313BB7244\"}]}]}],\"references\":[{\"url\":\"http://code.google.com/p/chromium/issues/detail?id=101458\",\"source\":\"chrome-cve-admin@google.com\"},{\"url\":\"http://googlechromereleases.blogspot.com/2011/11/stable-channel-update.html\",\"source\":\"chrome-cve-admin@google.com\"},{\"url\":\"http://secunia.com/advisories/46933\",\"source\":\"chrome-cve-admin@google.com\"},{\"url\":\"http://secunia.com/advisories/49089\",\"source\":\"chrome-cve-admin@google.com\"},{\"url\":\"http://www.debian.org/security/2012/dsa-2471\",\"source\":\"chrome-cve-admin@google.com\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2012:074\",\"source\":\"chrome-cve-admin@google.com\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2012:075\",\"source\":\"chrome-cve-admin@google.com\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2012:076\",\"source\":\"chrome-cve-admin@google.com\"},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13551\",\"source\":\"chrome-cve-admin@google.com\"},{\"url\":\"http://code.google.com/p/chromium/issues/detail?id=101458\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://googlechromereleases.blogspot.com/2011/11/stable-channel-update.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/46933\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/49089\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.debian.org/security/2012/dsa-2471\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2012:074\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2012:075\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2012:076\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13551\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
  }
}

ghsa-wwcc-3xpq-5gj8

Vulnerability from github

Published

2022-05-13 01:26

Modified

2022-05-13 01:26

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2011-3895"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-787"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2011-11-11T11:55:00Z",
    "severity": "HIGH"
  },
  "details": "Heap-based buffer overflow in the Vorbis decoder in Google Chrome before 15.0.874.120 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted stream.",
  "id": "GHSA-wwcc-3xpq-5gj8",
  "modified": "2022-05-13T01:26:54Z",
  "published": "2022-05-13T01:26:54Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3895"
    },
    {
      "type": "WEB",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13551"
    },
    {
      "type": "WEB",
      "url": "http://code.google.com/p/chromium/issues/detail?id=101458"
    },
    {
      "type": "WEB",
      "url": "http://googlechromereleases.blogspot.com/2011/11/stable-channel-update.html"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/46933"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/49089"
    },
    {
      "type": "WEB",
      "url": "http://www.debian.org/security/2012/dsa-2471"
    },
    {
      "type": "WEB",
      "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2012:074"
    },
    {
      "type": "WEB",
      "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2012:075"
    },
    {
      "type": "WEB",
      "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2012:076"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

CERTA-2011-AVI-642

Vulnerability from certfr_avis

De multiples vulnérabilités ont été corrigées dans Google Chrome. Elles permettent notamment l'exécution de code à distance ou le contournement de la politique de sécurité.

Description

De multiples vulnérabilités ont été corrigées dans Google Chrome. Elles permettent notamment l'exécution de code à distance ou le contournement de la politique de sécurité.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

	Vendor	Product	Description
	Google	Chrome	Google Chrome versions antérieures à 15.0.874.120.

References

Title

Publication Time

Tags

Notes de version Google Chrome du 10 Novembre 2011	None	vendor-advisory
Note de version Google Chrome 2011/11/stable-channel-update du 10 novembre 2011 :	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Google Chrome versions ant\u00e9rieures \u00e0 15.0.874.120.",
      "product": {
        "name": "Chrome",
        "vendor": {
          "name": "Google",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Description\n\nDe multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans Google Chrome. Elles\npermettent notamment l\u0027ex\u00e9cution de code \u00e0 distance ou le contournement\nde la politique de s\u00e9curit\u00e9.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2011-3892",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-3892"
    },
    {
      "name": "CVE-2011-2456",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-2456"
    },
    {
      "name": "CVE-2011-2450",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-2450"
    },
    {
      "name": "CVE-2011-3896",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-3896"
    },
    {
      "name": "CVE-2011-2458",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-2458"
    },
    {
      "name": "CVE-2011-2457",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-2457"
    },
    {
      "name": "CVE-2011-3895",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-3895"
    },
    {
      "name": "CVE-2011-3894",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-3894"
    },
    {
      "name": "CVE-2011-2459",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-2459"
    },
    {
      "name": "CVE-2011-2451",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-2451"
    },
    {
      "name": "CVE-2011-2460",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-2460"
    },
    {
      "name": "CVE-2011-2453",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-2453"
    },
    {
      "name": "CVE-2011-2452",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-2452"
    },
    {
      "name": "CVE-2011-3898",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-3898"
    },
    {
      "name": "CVE-2011-2454",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-2454"
    },
    {
      "name": "CVE-2011-2455",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-2455"
    },
    {
      "name": "CVE-2011-2445",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-2445"
    },
    {
      "name": "CVE-2011-3893",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-3893"
    },
    {
      "name": "CVE-2011-3897",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-3897"
    }
  ],
  "initial_release_date": "2011-11-17T00:00:00",
  "last_revision_date": "2011-11-17T00:00:00",
  "links": [
    {
      "title": "Note de version Google Chrome 2011/11/stable-channel-update    du 10 novembre 2011 :",
      "url": "http://googlechromereleases.blogspot.com/2011/11/stable-channel-update.html"
    }
  ],
  "reference": "CERTA-2011-AVI-642",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2011-11-17T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003eGoogle Chrome\u003c/span\u003e. Elles permettent notamment\nl\u0027ex\u00e9cution de code \u00e0 distance ou le contournement de la politique de\ns\u00e9curit\u00e9.\n",
  "title": "Vuln\u00e9rabilit\u00e9s dans Google Chrome",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Notes de version Google Chrome du 10 Novembre 2011",
      "url": null
    }
  ]
}

CERTA-2012-AVI-018

Vulnerability from certfr_avis

De multiples vulnérabilités présentes dans FFmpeg peuvent être exploitées pour effectuer un déni de service ou compromettre un système.

Description

De multiples vulnérabilités ont été découvertes dans FFmpeg, un outil pour gérer des flux audio ou vidéo. Ces vulnérabilités peuvent être exploitées par une personne malveillante pour effectuer un déni de service ou compromettre un système.

Se référer aux bulletins de l'éditeur pour obtenir le détail des vulnérabilités (cf. section Documentation).

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

FFmpeg versions inférieures à 0.9.1.

Impacted products

	Vendor	Product	Description

References

Title

Publication Time

Tags

Bulletins de FFmpeg.org	None	vendor-advisory
Bulletins FFmpeg :	-	other
Bulletins FFmpeg :	-	other
Bulletins FFmpeg :	-	other
Bulletins FFmpeg :	-	other
Bulletins FFmpeg :	-	other
Bulletins FFmpeg :	-	other
Bulletins FFmpeg :	-	other
Bulletins FFmpeg :	-	other
Bulletins FFmpeg :	-	other
Bulletins FFmpeg :	-	other
Bulletins FFmpeg :	-	other
Bulletins FFmpeg :	-	other
Bulletins FFmpeg :	-	other
Bulletins FFmpeg :	-	other
Bulletins FFmpeg :	-	other
Bulletins FFmpeg :	-	other
Bulletins FFmpeg :	-	other
Bulletins FFmpeg :	-	other
Bulletins FFmpeg :	-	other
Bulletins FFmpeg :	-	other
Bulletins FFmpeg :	-	other
Bulletins FFmpeg :	-	other
Bulletins FFmpeg :	-	other
Bulletins FFmpeg :	-	other
Bulletins FFmpeg :	-	other
Bulletins FFmpeg :	-	other
Bulletins FFmpeg :	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [],
  "affected_systems_content": "\u003cP\u003e\u003cSPAN class=\"textit\"\u003eFFmpeg\u003c/SPAN\u003e versions inf\u00e9rieures \u00e0  0.9.1.\u003c/P\u003e",
  "content": "## Description\n\nDe multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans FFmpeg, un outil\npour g\u00e9rer des flux audio ou vid\u00e9o. Ces vuln\u00e9rabilit\u00e9s peuvent \u00eatre\nexploit\u00e9es par une personne malveillante pour effectuer un d\u00e9ni de\nservice ou compromettre un syst\u00e8me.\n\nSe r\u00e9f\u00e9rer aux bulletins de l\u0027\u00e9diteur pour obtenir le d\u00e9tail des\nvuln\u00e9rabilit\u00e9s (cf. section Documentation).\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2011-3895",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-3895"
    },
    {
      "name": "CVE-2011-3893",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-3893"
    }
  ],
  "initial_release_date": "2012-01-13T00:00:00",
  "last_revision_date": "2012-01-13T00:00:00",
  "links": [
    {
      "title": "Bulletins FFmpeg :",
      "url": "http://ffmpeg.org/trac/ffmpeg/ticket/801"
    },
    {
      "title": "Bulletins FFmpeg :",
      "url": "http://ffmpeg.org/trac/ffmpeg/ticket/760"
    },
    {
      "title": "Bulletins FFmpeg :",
      "url": "http://ffmpeg.org/trac/ffmpeg/ticket/776"
    },
    {
      "title": "Bulletins FFmpeg :",
      "url": "http://ffmpeg.org/trac/ffmpeg/ticket/812"
    },
    {
      "title": "Bulletins FFmpeg :",
      "url": "http://ffmpeg.org/trac/ffmpeg/ticket/772"
    },
    {
      "title": "Bulletins FFmpeg :",
      "url": "http://ffmpeg.org/trac/ffmpeg/ticket/780"
    },
    {
      "title": "Bulletins FFmpeg :",
      "url": "http://ffmpeg.org/trac/ffmpeg/ticket/758"
    },
    {
      "title": "Bulletins FFmpeg :",
      "url": "http://ffmpeg.org/trac/ffmpeg/ticket/768"
    },
    {
      "title": "Bulletins FFmpeg :",
      "url": "http://ffmpeg.org/trac/ffmpeg/ticket/809"
    },
    {
      "title": "Bulletins FFmpeg :",
      "url": "http://ffmpeg.org/trac/ffmpeg/ticket/777"
    },
    {
      "title": "Bulletins FFmpeg :",
      "url": "http://ffmpeg.org/trac/ffmpeg/ticket/789"
    },
    {
      "title": "Bulletins FFmpeg :",
      "url": "http://ffmpeg.org/trac/ffmpeg/ticket/803"
    },
    {
      "title": "Bulletins FFmpeg :",
      "url": "http://ffmpeg.org/trac/ffmpeg/ticket/788"
    },
    {
      "title": "Bulletins FFmpeg :",
      "url": "http://ffmpeg.org/trac/ffmpeg/ticket/806"
    },
    {
      "title": "Bulletins FFmpeg :",
      "url": "http://ffmpeg.org/trac/ffmpeg/ticket/807"
    },
    {
      "title": "Bulletins FFmpeg :",
      "url": "http://ffmpeg.org/trac/ffmpeg/ticket/761"
    },
    {
      "title": "Bulletins FFmpeg :",
      "url": "http://ffmpeg.org/trac/ffmpeg/ticket/794"
    },
    {
      "title": "Bulletins FFmpeg :",
      "url": "http://ffmpeg.org/trac/ffmpeg/ticket/775"
    },
    {
      "title": "Bulletins FFmpeg :",
      "url": "http://ffmpeg.org/trac/ffmpeg/ticket/804"
    },
    {
      "title": "Bulletins FFmpeg :",
      "url": "http://ffmpeg.org/trac/ffmpeg/ticket/837"
    },
    {
      "title": "Bulletins FFmpeg :",
      "url": "http://ffmpeg.org/trac/ffmpeg/ticket/793"
    },
    {
      "title": "Bulletins FFmpeg :",
      "url": "http://ffmpeg.org/trac/ffmpeg/ticket/755"
    },
    {
      "title": "Bulletins FFmpeg :",
      "url": "http://ffmpeg.org/trac/ffmpeg/ticket/774"
    },
    {
      "title": "Bulletins FFmpeg :",
      "url": "http://ffmpeg.org/trac/ffmpeg/ticket/770"
    },
    {
      "title": "Bulletins FFmpeg :",
      "url": "http://ffmpeg.org/trac/ffmpeg/ticket/771"
    },
    {
      "title": "Bulletins FFmpeg :",
      "url": "http://ffmpeg.org/trac/ffmpeg/ticket/754"
    },
    {
      "title": "Bulletins FFmpeg :",
      "url": "http://ffmpeg.org/trac/ffmpeg/ticket/800"
    }
  ],
  "reference": "CERTA-2012-AVI-018",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2012-01-13T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s pr\u00e9sentes dans \u003cspan\nclass=\"textit\"\u003eFFmpeg\u003c/span\u003e peuvent \u00eatre exploit\u00e9es pour effectuer un\nd\u00e9ni de service ou compromettre un syst\u00e8me.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans FFmpeg",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletins de FFmpeg.org",
      "url": null
    }
  ]
}

gsd-2011-3895

Vulnerability from gsd

Modified

2023-12-13 01:19

Details

Aliases

CVE-2011-3895

Aliases

CVE-2011-3895

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2011-3895",
    "description": "Heap-based buffer overflow in the Vorbis decoder in Google Chrome before 15.0.874.120 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted stream.",
    "id": "GSD-2011-3895",
    "references": [
      "https://www.debian.org/security/2012/dsa-2471"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2011-3895"
      ],
      "details": "Heap-based buffer overflow in the Vorbis decoder in Google Chrome before 15.0.874.120 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted stream.",
      "id": "GSD-2011-3895",
      "modified": "2023-12-13T01:19:10.004345Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "security@google.com",
        "ID": "CVE-2011-3895",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Heap-based buffer overflow in the Vorbis decoder in Google Chrome before 15.0.874.120 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted stream."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "MDVSA-2012:076",
            "refsource": "MANDRIVA",
            "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2012:076"
          },
          {
            "name": "MDVSA-2012:074",
            "refsource": "MANDRIVA",
            "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2012:074"
          },
          {
            "name": "MDVSA-2012:075",
            "refsource": "MANDRIVA",
            "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2012:075"
          },
          {
            "name": "http://googlechromereleases.blogspot.com/2011/11/stable-channel-update.html",
            "refsource": "CONFIRM",
            "url": "http://googlechromereleases.blogspot.com/2011/11/stable-channel-update.html"
          },
          {
            "name": "49089",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/49089"
          },
          {
            "name": "DSA-2471",
            "refsource": "DEBIAN",
            "url": "http://www.debian.org/security/2012/dsa-2471"
          },
          {
            "name": "46933",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/46933"
          },
          {
            "name": "http://code.google.com/p/chromium/issues/detail?id=101458",
            "refsource": "CONFIRM",
            "url": "http://code.google.com/p/chromium/issues/detail?id=101458"
          },
          {
            "name": "oval:org.mitre.oval:def:13551",
            "refsource": "OVAL",
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13551"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndExcluding": "15.0.874.120",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          },
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "security@google.com",
          "ID": "CVE-2011-3895"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Heap-based buffer overflow in the Vorbis decoder in Google Chrome before 15.0.874.120 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted stream."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-787"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://code.google.com/p/chromium/issues/detail?id=101458",
              "refsource": "CONFIRM",
              "tags": [
                "Exploit",
                "Issue Tracking",
                "Patch",
                "Vendor Advisory"
              ],
              "url": "http://code.google.com/p/chromium/issues/detail?id=101458"
            },
            {
              "name": "http://googlechromereleases.blogspot.com/2011/11/stable-channel-update.html",
              "refsource": "CONFIRM",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://googlechromereleases.blogspot.com/2011/11/stable-channel-update.html"
            },
            {
              "name": "46933",
              "refsource": "SECUNIA",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "http://secunia.com/advisories/46933"
            },
            {
              "name": "MDVSA-2012:074",
              "refsource": "MANDRIVA",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2012:074"
            },
            {
              "name": "MDVSA-2012:075",
              "refsource": "MANDRIVA",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2012:075"
            },
            {
              "name": "DSA-2471",
              "refsource": "DEBIAN",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "http://www.debian.org/security/2012/dsa-2471"
            },
            {
              "name": "MDVSA-2012:076",
              "refsource": "MANDRIVA",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2012:076"
            },
            {
              "name": "49089",
              "refsource": "SECUNIA",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "http://secunia.com/advisories/49089"
            },
            {
              "name": "oval:org.mitre.oval:def:13551",
              "refsource": "OVAL",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13551"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 7.5,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "exploitabilityScore": 10.0,
          "impactScore": 6.4,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "HIGH",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2020-05-08T14:17Z",
      "publishedDate": "2011-11-11T11:55Z"
    }
  }
}

fkie_cve-2011-3895

Vulnerability from fkie_nvd

Published

2011-11-11 11:55

Modified

2025-04-11 00:51

Severity ?

Summary

References

	URL	Tags
	chrome-cve-admin@google.com	http://code.google.com/p/chromium/issues/detail?id=101458
	chrome-cve-admin@google.com	http://googlechromereleases.blogspot.com/2011/11/stable-channel-update.html
	chrome-cve-admin@google.com	http://secunia.com/advisories/46933
	chrome-cve-admin@google.com	http://secunia.com/advisories/49089
	chrome-cve-admin@google.com	http://www.debian.org/security/2012/dsa-2471
	chrome-cve-admin@google.com	http://www.mandriva.com/security/advisories?name=MDVSA-2012:074
	chrome-cve-admin@google.com	http://www.mandriva.com/security/advisories?name=MDVSA-2012:075
	chrome-cve-admin@google.com	http://www.mandriva.com/security/advisories?name=MDVSA-2012:076
	chrome-cve-admin@google.com	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13551
	af854a3a-2127-422b-91ae-364da2661108	http://code.google.com/p/chromium/issues/detail?id=101458
	af854a3a-2127-422b-91ae-364da2661108	http://googlechromereleases.blogspot.com/2011/11/stable-channel-update.html
	af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/46933
	af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/49089
	af854a3a-2127-422b-91ae-364da2661108	http://www.debian.org/security/2012/dsa-2471
	af854a3a-2127-422b-91ae-364da2661108	http://www.mandriva.com/security/advisories?name=MDVSA-2012:074
	af854a3a-2127-422b-91ae-364da2661108	http://www.mandriva.com/security/advisories?name=MDVSA-2012:075
	af854a3a-2127-422b-91ae-364da2661108	http://www.mandriva.com/security/advisories?name=MDVSA-2012:076
	af854a3a-2127-422b-91ae-364da2661108	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13551

Impacted products

	Vendor	Product	Version
	google	chrome	*
	debian	debian_linux	6.0

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "1333A524-7ACE-4A53-BF40-494F00E52059",
              "versionEndExcluding": "15.0.874.120",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "036E8A89-7A16-411F-9D31-676313BB7244",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Heap-based buffer overflow in the Vorbis decoder in Google Chrome before 15.0.874.120 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted stream."
    },
    {
      "lang": "es",
      "value": "Desbordamiento de b\u00fafer basado en memoria din\u00e1mica en el decodificador de Vorbis en Google Chrome anterior a v15.0.874.120 permite a atacantes remotos causar una denegaci\u00f3n de servicio o posiblemente tener un impacto no especificado a trav\u00e9s de un stream manipulado."
    }
  ],
  "id": "CVE-2011-3895",
  "lastModified": "2025-04-11T00:51:21.963",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 7.5,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 6.4,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2011-11-11T11:55:02.600",
  "references": [
    {
      "source": "chrome-cve-admin@google.com",
      "url": "http://code.google.com/p/chromium/issues/detail?id=101458"
    },
    {
      "source": "chrome-cve-admin@google.com",
      "url": "http://googlechromereleases.blogspot.com/2011/11/stable-channel-update.html"
    },
    {
      "source": "chrome-cve-admin@google.com",
      "url": "http://secunia.com/advisories/46933"
    },
    {
      "source": "chrome-cve-admin@google.com",
      "url": "http://secunia.com/advisories/49089"
    },
    {
      "source": "chrome-cve-admin@google.com",
      "url": "http://www.debian.org/security/2012/dsa-2471"
    },
    {
      "source": "chrome-cve-admin@google.com",
      "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2012:074"
    },
    {
      "source": "chrome-cve-admin@google.com",
      "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2012:075"
    },
    {
      "source": "chrome-cve-admin@google.com",
      "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2012:076"
    },
    {
      "source": "chrome-cve-admin@google.com",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13551"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://code.google.com/p/chromium/issues/detail?id=101458"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://googlechromereleases.blogspot.com/2011/11/stable-channel-update.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/46933"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/49089"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.debian.org/security/2012/dsa-2471"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2012:074"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2012:075"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2012:076"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13551"
    }
  ],
  "sourceIdentifier": "chrome-cve-admin@google.com",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-787"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CVE-2011-3895 (GCVE-0-2011-3895)

Vulnerability from cvelistv5

ghsa-wwcc-3xpq-5gj8

Vulnerability from github

CERTA-2011-AVI-642

Vulnerability from certfr_avis

Description

Solution

CERTA-2012-AVI-018

Vulnerability from certfr_avis

Description

Solution

gsd-2011-3895

Vulnerability from gsd

fkie_cve-2011-3895

Vulnerability from fkie_nvd

Tags

Sightings

Nomenclature