10
CVSSv2

CVE-2011-1290

Published: 11/03/2011 Updated: 09/10/2018
CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10
VMScore: 890
Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Summary

Integer overflow in WebKit, as used on the Research In Motion (RIM) BlackBerry Torch 9800 with firmware 6.0.0.246, in Google Chrome prior to 10.0.648.133, and in Apple Safari prior to 5.0.5, allows remote attackers to execute arbitrary code via unknown vectors related to CSS "style handling," nodesets, and a length value, as demonstrated by Vincenzo Iozzo, Willem Pinckaers, and Ralf-Philipp Weinmann during a Pwn2Own competition at CanSecWest 2011.

Affected Products

Vendor Advisories

Several vulnerabilities were discovered in the Chromium browser The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2011-0779 Google Chrome before 9059784 does not properly handle a missing key in an extension, which allows remote attackers to cause a denial of service (application crash) via a crafted ...