VDB
CVE-2011-0474
CVE-2011-0474
PUBLISHED
CVSS 10 CRITICAL
Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly handle Cascading Style Sheets (CSS) token sequences in conjunction with cursors, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to a "stale pointer."
EPSS 2.15% · 84.5th percentile
Risk Scores
CVSS v2.0
10
EPSS Score
2.15%
84.5th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| chrome | 0 | |
| chrome_os | 0 | |
| debian | debian_linux | 6.0, 7.0 |
| n/a | n/a | * |
Timeline
- Jan 14, 2011 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 13, 2022 CVE Updated
- Jul 12, 2022 EPSS Score
- Sep 3, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 17, 2022 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 1, 2023 EPSS Score
- May 24, 2023 EPSS Score
- Jul 15, 2023 EPSS Score
References
- http://code.google.com/p/chromium/issues/detail?id=66748 url
- oval:org.mitre.oval:def:14443 vdb
- http://googlechromereleases.blogspot.com/2011/01/chrome-stable-release.html url
- 45788 vdb
- 70457 vdb
- chrome-css-cursors-unspecified(64665) vdb
- http://www.srware.net/forum/viewtopic.php?f=18&t=2054 url
- DSA-2188 vendor-advisory
- 42951 third-party-advisory
- https://nvd.nist.gov/vuln/detail/CVE-2011-0474 advisory