Search for vulnerabilities
Vulnerability details: VCID-c3cn-8rab-aaam
Vulnerability ID VCID-c3cn-8rab-aaam
Aliases CVE-2011-3893
Summary Google Chrome before 15.0.874.120 does not properly implement the MKV and Vorbis media handlers, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
Status Published
Exploitability 0.5
Weighted Severity 4.5
Risk 2.2
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-125 Out-of-bounds Read
System Score Found at
epss 0.00996 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.00996 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.00996 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.00996 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.00996 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.00996 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.00996 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.00996 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.00996 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.00996 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.00996 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.00996 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.00996 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.00996 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.00996 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.01222 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.01222 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.01336 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.01336 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.01336 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.01336 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.01336 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.01336 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.01336 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.01336 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.01336 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.01336 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.01336 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.01336 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.01336 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.01336 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.01336 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.01336 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.01336 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.01336 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.01336 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.01336 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.01336 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.01336 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.01336 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.01336 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.01336 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.01336 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.01336 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.0167 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.02187 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.02187 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.02187 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.02187 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.02187 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.02187 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.02187 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.02187 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.02187 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.02187 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.02187 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.02187 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.02187 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.02187 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.02187 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.02187 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.02187 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.02187 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.02187 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.02187 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.02187 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.02187 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.02187 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.02187 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.02187 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.02187 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.02187 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.02187 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.02187 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.02187 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.02187 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.02187 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.02187 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.02187 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.02424 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
epss 0.02424 https://api.first.org/data/v1/epss?cve=CVE-2011-3893
cvssv2 5.0 https://nvd.nist.gov/vuln/detail/CVE-2011-3893
Reference id Reference type URL
http://code.google.com/p/chromium/issues/detail?id=100492
http://code.google.com/p/chromium/issues/detail?id=100543
http://googlechromereleases.blogspot.com/2011/11/stable-channel-update.html
https://api.first.org/data/v1/epss?cve=CVE-2011-3893
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3893
http://secunia.com/advisories/46933
http://secunia.com/advisories/49089
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14267
654534 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=654534
cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
CVE-2011-3893 https://nvd.nist.gov/vuln/detail/CVE-2011-3893
GLSA-201111-05 https://security.gentoo.org/glsa/201111-05
GLSA-201310-12 https://security.gentoo.org/glsa/201310-12
No exploits are available.
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P Found at https://nvd.nist.gov/vuln/detail/CVE-2011-3893
Exploitability (E) Access Vector (AV) Access Complexity (AC) Authentication (Au) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

none

partial

complete

none

partial

complete

none

partial

complete
Exploit Prediction Scoring System (EPSS)
Percentile 0.84023
EPSS Score 0.00996
Published At Nov. 1, 2024, midnight
Date Actor Action Source VulnerableCode Version
There are no relevant records.