CVE-2011-1202

high

Description

The xsltGenerateIdFunction function in functions.c in libxslt 1.1.26 and earlier, as used in Google Chrome before 10.0.648.127 and other products, allows remote attackers to obtain potentially sensitive information about heap memory addresses via an XML document containing a call to the XSLT generate-id XPath function.

References

Advisories
More

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14244

https://exchange.xforce.ibmcloud.com/vulnerabilities/65966

https://bugzilla.redhat.com/show_bug.cgi?id=684386

http://www.securityfocus.com/bid/46785

http://www.mandriva.com/security/advisories?name=MDVSA-2012:164

http://www.mandriva.com/security/advisories?name=MDVSA-2011:079

http://scarybeastsecurity.blogspot.com/2011/03/multi-browser-heap-address-leak-in-xslt.html

http://git.gnome.org/browse/libxslt/commit/?id=ecb6bcb8d1b7e44842edde3929f412d46b40c89f

http://downloads.avaya.com/css/P8/documents/100144158

http://www.vupen.com/english/advisories/2011/0628

http://googlechromereleases.blogspot.com/2011/03/chrome-stable-release.html

Details

Source: Mitre, NVD

Published: 2011-03-11

Updated: 2025-04-11

Risk Information

CVSS v2

Base Score: 4.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:N/A:N

Severity: Medium

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Severity: High

EPSS

EPSS: 0.0102