Vulnerability Details : CVE-2011-1800
Multiple integer overflows in the SVG Filters implementation in WebCore in WebKit in Google Chrome before 11.0.696.68 allow remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.
Vulnerability category: Denial of service
Products affected by CVE-2011-1800
- cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2011-1800
0.82%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 72 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2011-1800
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
7.5
|
HIGH | AV:N/AC:L/Au:N/C:P/I:P/A:P |
10.0
|
6.4
|
NIST |
CWE ids for CVE-2011-1800
-
The product performs a calculation that can produce an integer overflow or wraparound when the logic assumes that the resulting value will always be larger than the original value. This occurs when an integer value is incremented to a value that is too large to store in the associated representation. When this occurs, the value may become a very small or negative number.Assigned by: nvd@nist.gov (Primary)
References for CVE-2011-1800
-
http://codereview.chromium.org/6949013
Issue 6949013: Merge 85926 - Code Review
-
http://code.google.com/p/chromium/issues/detail?id=80608
80608 - Multiple integer overflows in SVG filter effects - chromium - Monorail
-
http://trac.webkit.org/changeset/85996
Changeset 85996 – WebKit
-
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14187
Repository / Oval Repository
-
http://googlechromereleases.blogspot.com/2011/05/stable-channel-update.html
Chrome Releases: Stable Channel Update
Jump to