CVE-2011-3037
Apple Security Advisory 2012-09-12-1
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
Google Chrome before 17.0.963.65 does not properly perform casts of unspecified variables during the splitting of anonymous blocks, which allows remote attackers to cause a denial of service or possibly have unknown other impact via a crafted document.
Google Chrome anteriores a v17.0.963.65 no realiza las conversiones entre variables no especificadas durante el troceado de bloques anónimos de forma de forma correcta, lo que permite a atacantes remotos provocar una denegación de servicio o posiblemente tener otro impacto no determinado a través de un documento modificado.
A cross-site scripting issue existed in the handling of feed:// URLs in Safari. An autocomplete flaw was also fixed in Safari. Various other Safari issues have also been addressed. Webkit had code execution, cross origin, access control, and various other vulnerability issues addressed.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2011-08-09 CVE Reserved
- 2012-03-05 CVE Published
- 2024-08-06 CVE Updated
- 2025-03-30 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-704: Incorrect Type Conversion or Cast
CAPEC
References (20)
| URL | Tag | Source |
|---|---|---|
| http://osvdb.org/79796 | Broken Link | |
| http://secunia.com/advisories/48265 | Not Applicable | |
| http://secunia.com/advisories/48419 | Not Applicable | |
| http://secunia.com/advisories/48527 | Not Applicable | |
| http://support.apple.com/kb/HT5400 | Third Party Advisory |
|
| http://support.apple.com/kb/HT5485 | Third Party Advisory |
|
| http://support.apple.com/kb/HT5503 | Broken Link |
|
| http://www.securityfocus.com/bid/52271 | Third Party Advisory | |
| http://www.securitytracker.com/id?1026759 | Third Party Advisory | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/73648 | Third Party Advisory | |
| https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14397 | Signature |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Google Search vendor "Google" | Chrome Search vendor "Google" for product "Chrome" | < 17.0.963.65 Search vendor "Google" for product "Chrome" and version " < 17.0.963.65" | - |
Affected
| ||||||
| Opensuse Search vendor "Opensuse" | Opensuse Search vendor "Opensuse" for product "Opensuse" | 12.1 Search vendor "Opensuse" for product "Opensuse" and version "12.1" | - |
Affected
| ||||||
| Apple Search vendor "Apple" | Itunes Search vendor "Apple" for product "Itunes" | < 10.7 Search vendor "Apple" for product "Itunes" and version " < 10.7" | - |
Affected
| ||||||
| Apple Search vendor "Apple" | Safari Search vendor "Apple" for product "Safari" | < 6.0 Search vendor "Apple" for product "Safari" and version " < 6.0" | - |
Affected
| ||||||
| Apple Search vendor "Apple" | Iphone Os Search vendor "Apple" for product "Iphone Os" | < 6.0 Search vendor "Apple" for product "Iphone Os" and version " < 6.0" | - |
Affected
| ||||||