VDB
CVE-2011-1691
CVE-2011-1691
PUBLISHED
The counterToCSSValue function in CSSComputedStyleDeclaration.cpp in the Cascading Style Sheets (CSS) implementation in WebCore in WebKit before r82222, as used in Google Chrome before 11.0.696.43 and other products, does not properly handle access to the (1) counterIncrement and (2) counterReset attributes of CSSStyleDeclaration data provided by a getComputedStyle method call, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via crafted JavaScript code.
EPSS 2.06% · 84.2th percentile
Risk Scores
EPSS Score
2.06%
84.2th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ubuntu:16.04:LTS | qtwebkit-source | 2.3.2-0ubuntu10, 2.3.2-0ubuntu11, 0 |
Exploit Intelligence
- http://code.google.com/p/chromium/issues/detail?id=77665 (nist-nvd)
- https://bugs.webkit.org/show_bug.cgi?id=57266 (nist-nvd)
- http://trac.webkit.org/changeset/82222 (circl)
- oval:org.mitre.oval:def:14365 (circl)
- http://googlechromereleases.blogspot.com/2011/04/beta-channel-update_12.html (circl)
- google-countertocssvalue-dos(66818) (circl)
Timeline
- Apr 15, 2011 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Apr 2, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Jul 17, 2023 EPSS Score
References
- https://ubuntu.com/security/CVE-2011-1691 third-party-advisory
- https://www.cve.org/CVERecord?id=CVE-2011-1691 third-party-advisory