CVE-2011-2821
Double free vulnerability in libxml2, as used in Google Chrome before 13.0.782.215, allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted XPath expression.
Published at
2011-08-29T15:55Z
4633 days ago
Modified
2020-05-19T13:43Z
1447 days ago
CWE-415
Problem type
References
GET https://vulnerabilitydata.com/api/details/CVE-2011-2821
{
"id": "CVE-2011-2821",
"published_date": "2011-08-29T15:55Z",
"last_modified_date": "2020-05-19T13:43Z",
"assigner": "security@google.com",
"description": "Double free vulnerability in libxml2, as used in Google Chrome before 13.0.782.215, allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted XPath expression.",
"references": [
{
"url": "http://googlechromereleases.blogspot.com/2011/08/stable-channel-update_22.html",
"name": "http://googlechromereleases.blogspot.com/2011/08/stable-channel-update_22.html",
"refsource": "CONFIRM",
"tags": [
"Vendor Advisory"
]
},
{
"url": "http://code.google.com/p/chromium/issues/detail?id=89402",
"name": "http://code.google.com/p/chromium/issues/detail?id=89402",
"refsource": "CONFIRM",
"tags": [
"Exploit",
"Vendor Advisory"
]
},
{
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:145",
"name": "MDVSA-2011:145",
"refsource": "MANDRIVA",
"tags": [
"Third Party Advisory"
]
},
{
"url": "http://www.redhat.com/support/errata/RHSA-2011-1749.html",
"name": "RHSA-2011:1749",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
]
},
{
"url": "http://support.apple.com/kb/HT5281",
"name": "http://support.apple.com/kb/HT5281",
"refsource": "CONFIRM",
"tags": [
"Third Party Advisory"
]
},
{
"url": "http://lists.apple.com/archives/security-announce/2012/May/msg00001.html",
"name": "APPLE-SA-2012-05-09-1",
"refsource": "APPLE",
"tags": [
"Mailing List",
"Third Party Advisory"
]
},
{
"url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03360041",
"name": "SSRT100877",
"refsource": "HP",
"tags": [
"Broken Link"
]
},
{
"url": "http://lists.apple.com/archives/security-announce/2012/Sep/msg00003.html",
"name": "APPLE-SA-2012-09-19-1",
"refsource": "APPLE",
"tags": [
"Mailing List",
"Third Party Advisory"
]
},
{
"url": "http://support.apple.com/kb/HT5503",
"name": "http://support.apple.com/kb/HT5503",
"refsource": "CONFIRM",
"tags": [
"Third Party Advisory"
]
},
{
"url": "http://www.debian.org/security/2012/dsa-2394",
"name": "DSA-2394",
"refsource": "DEBIAN",
"tags": [
"Third Party Advisory"
]
},
{
"url": "http://rhn.redhat.com/errata/RHSA-2013-0217.html",
"name": "RHSA-2013:0217",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
]
},
{
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13840",
"name": "oval:org.mitre.oval:def:13840",
"refsource": "OVAL",
"tags": [
"Third Party Advisory"
]
}
],
"impact": {
"baseMetricV2": {
"cvssV2": {
"version": "2.0",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"accessVector": "NETWORK",
"accessComplexity": "LOW",
"authentication": "NONE",
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5
},
"severity": "HIGH",
"exploitabilityScore": 10,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": false
}
},
"problem_type": "CWE-415"
}