CVE-2011-1202

medium
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

The xsltGenerateIdFunction function in functions.c in libxslt 1.1.26 and earlier, as used in Google Chrome before 10.0.648.127 and other products, allows remote attackers to obtain potentially sensitive information about heap memory addresses via an XML document containing a call to the XSLT generate-id XPath function.

References

http://code.google.com/p/chromium/issues/detail?id=73716

http://downloads.avaya.com/css/P8/documents/100144158

http://git.gnome.org/browse/libxslt/commit/?id=ecb6bcb8d1b7e44842edde3929f412d46b40c89f

http://googlechromereleases.blogspot.com/2011/03/chrome-stable-release.html

http://scarybeastsecurity.blogspot.com/2011/03/multi-browser-heap-address-leak-in-xslt.html

http://www.mandriva.com/security/advisories?name=MDVSA-2011:079

http://www.mandriva.com/security/advisories?name=MDVSA-2012:164

http://www.securityfocus.com/bid/46785

http://www.vupen.com/english/advisories/2011/0628

https://bugzilla.redhat.com/show_bug.cgi?id=684386

https://exchange.xforce.ibmcloud.com/vulnerabilities/65966

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14244

Details

Source: MITRE

Published: 2011-03-11

Updated: 2020-06-04

Type: CWE-200

Risk Information

CVSS v2

Base Score: 4.3

Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N

Impact Score: 2.9

Exploitability Score: 8.6

Severity: MEDIUM

Vulnerable Software

Configuration 1

OR

cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*

cpe:2.3:a:xmlsoft:libxslt:*:*:*:*:*:*:*:* versions up to 1.1.26 (inclusive)

Tenable Plugins

View all (53 total)

IDNameProductFamilySeverity
89661VMware ESX / ESXi Authentication Service and Third-Party Libraries Multiple Vulnerabilities (VMSA-2013-0001) (remote check)NessusMisc.
critical
80695Oracle Solaris Third-Party Patch Update : libxslt (multiple_vulnerabilities_in_libxslt)NessusSolaris Local Security Checks
medium
75956openSUSE Security Update : mozilla-js192 (mozilla-js192-4460)NessusSuSE Local Security Checks
critical
75944openSUSE Security Update : MozillaFirefox (MozillaFirefox-4457)NessusSuSE Local Security Checks
critical
75675openSUSE Security Update : mozilla-xulrunner191 (mozilla-xulrunner191-4456)NessusSuSE Local Security Checks
critical
75652openSUSE Security Update : MozillaFirefox (MozillaFirefox-4459)NessusSuSE Local Security Checks
critical
70886ESXi 5.1 < Build 1063671 Multiple Vulnerabilities (remote check)NessusMisc.
medium
69613Amazon Linux AMI : libxslt (ALAS-2012-123)NessusAmazon Linux Local Security Checks
medium
68622Oracle Linux 5 / 6 : libxslt (ELSA-2012-1265)NessusOracle Linux Local Security Checks
medium
68261Oracle Linux 4 / 5 / 6 : firefox (ELSA-2011-0471)NessusOracle Linux Local Security Checks
critical
64642VMSA-2013-0001 : VMware vSphere security updates for the authentication service and third-party librariesNessusVMware ESX Local Security Checks
critical
63402GLSA-201301-01 : Mozilla Products: Multiple vulnerabilities (BEAST)NessusGentoo Local Security Checks
critical
63195Fedora 18 : libxslt-1.1.27-2.fc18 (2012-15716)NessusFedora Local Security Checks
medium
62504Mandriva Linux Security Advisory : libxslt (MDVSA-2012:164)NessusMandriva Local Security Checks
medium
62435Ubuntu 8.04 LTS / 10.04 LTS / 11.04 / 11.10 / 12.04 LTS : libxslt vulnerabilities (USN-1595-1)NessusUbuntu Local Security Checks
medium
62328Fedora 17 : libxslt-1.1.26-10.fc17 (2012-14083)NessusFedora Local Security Checks
medium
62326Fedora 16 : libxslt-1.1.26-9.fc16 (2012-14048)NessusFedora Local Security Checks
medium
62107Scientific Linux Security Update : libxslt on SL5.x, SL6.x i386/x86_64 (20120913)NessusScientific Linux Local Security Checks
medium
62090RHEL 5 / 6 : libxslt (RHSA-2012:1265)NessusRed Hat Local Security Checks
medium
62085CentOS 5 / 6 : libxslt (CESA-2012:1265)NessusCentOS Local Security Checks
medium
61025Scientific Linux Security Update : firefox on SL4.x, SL5.x, SL6.x i386/x86_64NessusScientific Linux Local Security Checks
critical
57228SuSE 10 Security Update : Mozilla XULrunner (ZYPP Patch Number 7492)NessusSuSE Local Security Checks
critical
57148SuSE 10 Security Update : Mozilla Firefox (ZYPP Patch Number 7490)NessusSuSE Local Security Checks
critical
55083Ubuntu 9.10 : Multiple Xulrunner 1.9.1 vulnerabilities (USN-1123-1)NessusUbuntu Local Security Checks
critical
55082Ubuntu 11.04 : thunderbird regression (USN-1122-3)NessusUbuntu Local Security Checks
critical
55081Ubuntu 11.04 : thunderbird vulnerabilities (USN-1122-2)NessusUbuntu Local Security Checks
critical
55080Ubuntu 10.04 LTS / 10.10 : thunderbird vulnerabilities (USN-1122-1)NessusUbuntu Local Security Checks
critical
55079Ubuntu 11.04 : Firefox vulnerabilities (USN-1121-1)NessusUbuntu Local Security Checks
critical
55070Ubuntu 8.04 LTS / 9.10 / 10.04 LTS / 10.10 : firefox, firefox-3.0, firefox-3.5, xulrunner-1.9.2 vulnerabilities (USN-1112-1)NessusUbuntu Local Security Checks
critical
53779openSUSE Security Update : mozilla-xulrunner191 (mozilla-xulrunner191-4456)NessusSuSE Local Security Checks
critical
53772openSUSE Security Update : MozillaFirefox (MozillaFirefox-4459)NessusSuSE Local Security Checks
critical
53650SuSE 10 Security Update : Mozilla XULrunner (ZYPP Patch Number 7493)NessusSuSE Local Security Checks
critical
53649SuSE 10 Security Update : Mozilla Firefox (ZYPP Patch Number 7491)NessusSuSE Local Security Checks
critical
53648SuSE 11.1 Security Update : Mozilla-XULrunner (SAT Patch Number 4461)NessusSuSE Local Security Checks
critical
53647SuSE 11.1 Security Update : Mozilla Firefox (SAT Patch Number 4463)NessusSuSE Local Security Checks
critical
53616Mandriva Linux Security Advisory : firefox (MDVSA-2011:079)NessusMandriva Local Security Checks
critical
53598CentOS 4 / 5 : firefox (CESA-2011:0471)NessusCentOS Local Security Checks
critical
801264Mozilla Firefox 4.0.x < 4.0.1 Multiple VulnerabilitiesLog Correlation EngineWeb Clients
high
801247Mozilla Firefox < 3.5.19 Multiple VulnerabilitiesLog Correlation EngineWeb Clients
high
801238Mozilla Firefox 3.6.x < 3.6.17 Multiple VulnerabilitiesLog Correlation EngineWeb Clients
high
5902Mozilla Firefox 4.0.x < 4.0.1 Multiple VulnerabilitiesNessus Network MonitorWeb Clients
high
5901Mozilla Firefox 3.6.x < 3.6.17 Multiple VulnerabilitiesNessus Network MonitorWeb Clients
high
5900Mozilla Firefox < 3.5.19 Multiple VulnerabilitiesNessus Network MonitorWeb Clients
high
53597SeaMonkey < 2.0.14 Multiple VulnerabilitiesNessusWindows
high
53595Firefox 4.0 < 4.0.1 Multiple VulnerabilitiesNessusWindows
high
53594Firefox 3.6 < 3.6.17 Multiple VulnerabilitiesNessusWindows
high
53593Firefox < 3.5.19 Multiple VulnerabilitiesNessusWindows
high
53580RHEL 4 / 5 / 6 : firefox (RHSA-2011:0471)NessusRed Hat Local Security Checks
critical
801324Mozilla SeaMonkey < 2.0.14 Multiple VulnerabilitiesLog Correlation EngineWeb Clients
high
5904SeaMonkey < 2.0.14 Multiple VulnerabilitiesNessus Network MonitorWeb Clients
high
800960Google Chrome < 10.0.648.127 Multiple VulnerabilitiesLog Correlation EngineWeb Clients
high
5812Google Chrome < 10.0.648.127 Multiple VulnerabilitiesNessus Network MonitorWeb Clients
high
52589Google Chrome < 10.0.648.127 Multiple VulnerabilitiesNessusWindows
medium