CVE-2011-1300

Severity Score

10.0

*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

The Program::getActiveUniformMaxLength function in libGLESv2/Program.cpp in libGLESv2.dll in the WebGLES library in Almost Native Graphics Layer Engine (ANGLE), as used in Mozilla Firefox 4.x before 4.0.1 on Windows and in the GPU process in Google Chrome before 10.0.648.205 on Windows, allows remote attackers to execute arbitrary code via unspecified vectors, related to an "off-by-three" error.

La función Program::getActiveUniformMaxLength en el archivo libGLESv2/Program.cpp en la biblioteca libGLESv2.dll en la biblioteca WebGLES en Almost Native Graphics Layer Engine (ANGLE), como es usado en Mozilla Firefox versiones 4.x anteriores a 4.0.1 en Windows y en el proceso GPU en Google Chrome anterior a versión 10.0.648.205 en Windows, permite a los atacantes remotos ejecutar código arbitrario por medio de vectores no especificados, relacionado con un error "off-by-three".

*Credits: N/A

CVSS Scores

NISTv2 10.0

Attack Vector

Network

Attack Complexity

Low

Authentication

None

Confidentiality

Complete

Integrity

Complete

Availability

Complete

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2011-03-06 CVE Reserved
2011-04-15 CVE Published
2023-10-14 EPSS Updated
2024-08-06 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-189: Numeric Errors

CAPEC

References (11)

URL	Tag	Source
http://www.securityfocus.com/bid/47377	Third Party Advisory
http://www.securitytracker.com/id?1025377	Third Party Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/66766	Third Party Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14466	Signature

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC
http://code.google.com/p/angleproject/source/detail?r=611	2019-07-18
http://code.google.com/p/chromium/issues/detail?id=70070	2019-07-18
http://googlechromereleases.blogspot.com/2011/04/stable-channel-update.html	2019-07-18
http://secunia.com/advisories/44141	2019-07-18
http://www.mozilla.org/security/announce/2011/mfsa2011-17.html	2019-07-18
http://www.vupen.com/english/advisories/2011/1006	2019-07-18
https://bugzilla.mozilla.org/show_bug.cgi?id=623791	2019-07-18

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Mozilla Search vendor "Mozilla"	Firefox Search vendor "Mozilla" for product "Firefox"	4.0 Search vendor "Mozilla" for product "Firefox" and version "4.0"	-	Affected	in	Microsoft Search vendor "Microsoft"	Windows Search vendor "Microsoft" for product "Windows"	-	-	Safe
Mozilla Search vendor "Mozilla"	Firefox Search vendor "Mozilla" for product "Firefox"	4.0 Search vendor "Mozilla" for product "Firefox" and version "4.0"	beta1	Affected	in	Microsoft Search vendor "Microsoft"	Windows Search vendor "Microsoft" for product "Windows"	-	-	Safe
Mozilla Search vendor "Mozilla"	Firefox Search vendor "Mozilla" for product "Firefox"	4.0 Search vendor "Mozilla" for product "Firefox" and version "4.0"	beta10	Affected	in	Microsoft Search vendor "Microsoft"	Windows Search vendor "Microsoft" for product "Windows"	-	-	Safe
Mozilla Search vendor "Mozilla"	Firefox Search vendor "Mozilla" for product "Firefox"	4.0 Search vendor "Mozilla" for product "Firefox" and version "4.0"	beta11	Affected	in	Microsoft Search vendor "Microsoft"	Windows Search vendor "Microsoft" for product "Windows"	-	-	Safe
Mozilla Search vendor "Mozilla"	Firefox Search vendor "Mozilla" for product "Firefox"	4.0 Search vendor "Mozilla" for product "Firefox" and version "4.0"	beta12	Affected	in	Microsoft Search vendor "Microsoft"	Windows Search vendor "Microsoft" for product "Windows"	-	-	Safe
Mozilla Search vendor "Mozilla"	Firefox Search vendor "Mozilla" for product "Firefox"	4.0 Search vendor "Mozilla" for product "Firefox" and version "4.0"	beta2	Affected	in	Microsoft Search vendor "Microsoft"	Windows Search vendor "Microsoft" for product "Windows"	-	-	Safe
Mozilla Search vendor "Mozilla"	Firefox Search vendor "Mozilla" for product "Firefox"	4.0 Search vendor "Mozilla" for product "Firefox" and version "4.0"	beta3	Affected	in	Microsoft Search vendor "Microsoft"	Windows Search vendor "Microsoft" for product "Windows"	-	-	Safe
Mozilla Search vendor "Mozilla"	Firefox Search vendor "Mozilla" for product "Firefox"	4.0 Search vendor "Mozilla" for product "Firefox" and version "4.0"	beta4	Affected	in	Microsoft Search vendor "Microsoft"	Windows Search vendor "Microsoft" for product "Windows"	-	-	Safe
Mozilla Search vendor "Mozilla"	Firefox Search vendor "Mozilla" for product "Firefox"	4.0 Search vendor "Mozilla" for product "Firefox" and version "4.0"	beta5	Affected	in	Microsoft Search vendor "Microsoft"	Windows Search vendor "Microsoft" for product "Windows"	-	-	Safe
Mozilla Search vendor "Mozilla"	Firefox Search vendor "Mozilla" for product "Firefox"	4.0 Search vendor "Mozilla" for product "Firefox" and version "4.0"	beta6	Affected	in	Microsoft Search vendor "Microsoft"	Windows Search vendor "Microsoft" for product "Windows"	-	-	Safe
Mozilla Search vendor "Mozilla"	Firefox Search vendor "Mozilla" for product "Firefox"	4.0 Search vendor "Mozilla" for product "Firefox" and version "4.0"	beta7	Affected	in	Microsoft Search vendor "Microsoft"	Windows Search vendor "Microsoft" for product "Windows"	-	-	Safe
Mozilla Search vendor "Mozilla"	Firefox Search vendor "Mozilla" for product "Firefox"	4.0 Search vendor "Mozilla" for product "Firefox" and version "4.0"	beta8	Affected	in	Microsoft Search vendor "Microsoft"	Windows Search vendor "Microsoft" for product "Windows"	-	-	Safe
Mozilla Search vendor "Mozilla"	Firefox Search vendor "Mozilla" for product "Firefox"	4.0 Search vendor "Mozilla" for product "Firefox" and version "4.0"	beta9	Affected	in	Microsoft Search vendor "Microsoft"	Windows Search vendor "Microsoft" for product "Windows"	-	-	Safe
Google Search vendor "Google"	Chrome Search vendor "Google" for product "Chrome"	< 10.0.648.205 Search vendor "Google" for product "Chrome" and version " < 10.0.648.205"	-	Affected	in	Microsoft Search vendor "Microsoft"	Windows Search vendor "Microsoft" for product "Windows"	-	-	Safe