// For flags

CVE-2011-0991

 

Severity Score

6.8
*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

Use-after-free vulnerability in Mono, when Moonlight 2.x before 2.4.1 or 3.x before 3.99.3 is used, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to finalizing and then resurrecting a DynamicMethod instance.

Vulnerabilidad de uso después de la liberación en Mono cuando se usa Moonlight v2.x anteriores a v2.4.1 o v3.x anteriores a v3.99.3 , permite a atacantes remotos producir una denegación de servicio (caída de aplicación) o posiblemente algún impacto a través de vectores relacionados con la finalización y luego resucitar una instancia DynamicMethod.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Medium
Authentication
None
Confidentiality
Partial
Integrity
Partial
Availability
Partial
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2011-02-14 CVE Reserved
  • 2011-04-13 CVE Published
  • 2023-03-07 EPSS Updated
  • 2024-08-06 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-399: Resource Management Errors
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Mono
Search vendor "Mono"
Mono
Search vendor "Mono" for product "Mono"
*-
Affected
Novell
Search vendor "Novell"
Moonlight
Search vendor "Novell" for product "Moonlight"
2.0
Search vendor "Novell" for product "Moonlight" and version "2.0"
-
Affected
Novell
Search vendor "Novell"
Moonlight
Search vendor "Novell" for product "Moonlight"
2.3.0
Search vendor "Novell" for product "Moonlight" and version "2.3.0"
-
Affected
Novell
Search vendor "Novell"
Moonlight
Search vendor "Novell" for product "Moonlight"
2.4
Search vendor "Novell" for product "Moonlight" and version "2.4"
-
Affected
Novell
Search vendor "Novell"
Moonlight
Search vendor "Novell" for product "Moonlight"
2.31
Search vendor "Novell" for product "Moonlight" and version "2.31"
-
Affected
Novell
Search vendor "Novell"
Moonlight
Search vendor "Novell" for product "Moonlight"
3.0
Search vendor "Novell" for product "Moonlight" and version "3.0"
-
Affected
Novell
Search vendor "Novell"
Moonlight
Search vendor "Novell" for product "Moonlight"
3.99
Search vendor "Novell" for product "Moonlight" and version "3.99"
-
Affected