Vulnerability Details : CVE-2011-1202
The xsltGenerateIdFunction function in functions.c in libxslt 1.1.26 and earlier, as used in Google Chrome before 10.0.648.127 and other products, allows remote attackers to obtain potentially sensitive information about heap memory addresses via an XML document containing a call to the XSLT generate-id XPath function.
Vulnerability category: Information leak
Exploit prediction scoring system (EPSS) score for CVE-2011-1202
Probability of exploitation activity in the next 30 days: 0.37%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 69 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2011-1202
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
|---|---|---|---|---|---|
|
4.3
|
MEDIUM | AV:N/AC:M/Au:N/C:P/I:N/A:N |
8.6
|
2.9
|
NIST |
CWE ids for CVE-2011-1202
-
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.Assigned by: nvd@nist.gov (Primary)
References for CVE-2011-1202
-
http://googlechromereleases.blogspot.com/2011/03/chrome-stable-release.html
Chrome Releases: Chrome Stable ReleaseVendor Advisory
-
http://scarybeastsecurity.blogspot.com/2011/03/multi-browser-heap-address-leak-in-xslt.html
Security: Multi-browser heap address leak in XSLTThird Party Advisory
-
http://git.gnome.org/browse/libxslt/commit/?id=ecb6bcb8d1b7e44842edde3929f412d46b40c89f
Fix generate-id() to not expose object addresses (ecb6bcb8) · Commits · GNOME / libxslt · GitLabPatch;Third Party Advisory
-
http://www.mandriva.com/security/advisories?name=MDVSA-2011:079
mandriva.comThird Party Advisory
-
https://bugzilla.redhat.com/show_bug.cgi?id=684386
684386 – (CVE-2011-1202) CVE-2011-1202 libxslt: Heap address leak in XLSTIssue Tracking;Third Party Advisory
-
http://code.google.com/p/chromium/issues/detail?id=73716
73716 - Leak of address of heap object via xslt generate-id() function - chromium - MonorailExploit;Issue Tracking;Patch;Vendor Advisory
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/65966
Google Chrome XSLT information disclosure CVE-2011-1202 Vulnerability ReportThird Party Advisory;VDB Entry
-
http://www.vupen.com/english/advisories/2011/0628
Webmail | OVH- OVHPermissions Required
-
http://downloads.avaya.com/css/P8/documents/100144158
ASA-2011-194 (RHSA-2011-0471)Third Party Advisory
-
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14244
Repository / Oval RepositoryThird Party Advisory
-
http://www.securityfocus.com/bid/46785
Google Chrome prior to 10.0.648.127 Multiple Security VulnerabilitiesThird Party Advisory;VDB Entry
-
http://www.mandriva.com/security/advisories?name=MDVSA-2012:164
mandriva.comThird Party Advisory
Products affected by CVE-2011-1202
- cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
- cpe:2.3:a:xmlsoft:libxslt:*:*:*:*:*:*:*:*