CVE-2011-1295 Information

Feb 14, 2021 cve

Description

WebKit as used in Google Chrome before 10.0.648.204 and Apple Safari before 5.0.6 does not properly handle node parentage which allows remote attackers to cause a denial of service (DOM tree corruption) conduct cross-site scripting (XSS) attacks or possibly have unspecified other impact via unknown vectors.

Reference

http://code.google.com/p/chromium/issues/detail?id=74991 http://googlechromereleases.blogspot.com/2011/03/stable-channel-update.html http://lists.apple.com/archives/security-announce/2011//Jul/msg00002.html http://lists.apple.com/archives/Security-announce/2011//Oct/msg00001.html http://secunia.com/advisories/43859 http://support.apple.com/kb/HT4808 http://support.apple.com/kb/HT4999 http://www.securityfocus.com/bid/47029 http://www.vupen.com/english/advisories/2011/0765 https://exchange.xforce.ibmcloud.com/vulnerabilities/66302 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A14269

Share on: