Vulnerability Details

Google Chrome 'GetWidget' methods DoS Vulnerability (Windows)

Published: 2011-07-22 10:16:19
CVE Author: NIST National Vulnerability Database

CVSS Base Vector:
AV:N/AC:M/Au:N/C:N/I:N/A:P

Impact:
Successful exploitation could allow the attackers to cause denial-of-service via a crafted web site, related to GetWidget methods.

Affected Versions:
Google Chrome version 14.0.792.0

Technical Details:
The flaw is due to error while handling a reload of a page generated in response to a POST which allows remote attackers to cause a denial of service.

Recommendations:
Upgrade to the Google Chrome 14.0.794.0 or later.

Summary:
The host is installed Google Chrome and is prone to denial of service vulnerability.

Detection Type:
Windows Registry

Solution Type:
Vendor Patch

NIST (National Institute of Standards and Technology) NVD (National Vulnerability Database)

https://nvd.nist.gov/vuln/detail/CVE-2011-2761

CVE Analysis

https://www.mageni.net/cve/CVE-2011-2761

References:

http://codereview.chromium.org/7189019
http://code.google.com/p/chromium/issues/detail?id=86119
http://googlechromereleases.blogspot.com/2011/06/dev-channel-update_16.html
http://www.google.com/chrome

Severity
Medium
CVSS Score
4.3
Published
2011-07-22
Modified
2018-10-20
Category
Denial of Service

You never have to pay for a vulnerability scanning and management software again.

Tired of paying a subscription 'per asset' or 'per IP'? Well you can officially cancel your current subscription. Mageni provides a free, open source and enterprise-ready vulnerability scanning and management platform which helps you to find, prioritize, remediate and manage your vulnerabilities. It is free and always will be.