CVE

Id
50961  
CVE No.
CVE-2011-3049  
Status
Candidate  
Description
Google Chrome before 17.0.963.83 does not properly restrict the extension web request API, which allows remote attackers to cause a denial of service (disrupted system requests) via a crafted extension.  
Phase
Assigned (20110809)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
549935 50961 CVE-2011-3049 CONFIRM:http://code.google.com/p/chromium/issues/detail?id=108648  View
549936 50961 CVE-2011-3049 CONFIRM:http://googlechromereleases.blogspot.com/2012/03/stable-channel-update_21.html  View
549937 50961 CVE-2011-3049 GENTOO:GLSA-201203-19  View
549938 50961 CVE-2011-3049 URL:http://security.gentoo.org/glsa/glsa-201203-19.xml  View
549939 50961 CVE-2011-3049 BID:52674  View
549940 50961 CVE-2011-3049 URL:http://www.securityfocus.com/bid/52674  View
549941 50961 CVE-2011-3049 OSVDB:80295  View
549942 50961 CVE-2011-3049 URL:http://osvdb.org/80295  View
549943 50961 CVE-2011-3049 OVAL:oval:org.mitre.oval:def:15049  View
549944 50961 CVE-2011-3049 URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:15049  View
549945 50961 CVE-2011-3049 SECTRACK:1026841  View
549946 50961 CVE-2011-3049 URL:http://www.securitytracker.com/id?1026841  View
549947 50961 CVE-2011-3049 SECUNIA:48527  View
549948 50961 CVE-2011-3049 URL:http://secunia.com/advisories/48527  View
549949 50961 CVE-2011-3049 XF:google-chrome-api-sec-bypass(74218)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
26213 JVNDB-2012-001920 Google Chrome の WebUI 権限の実装におけるアクセス制限を回避される脆弱性 Google Chrome の WebUI 権限の実装は、適切に分離を行わないため、アクセス制限を回避される脆弱性が存在します。 CVE-2011-3054 50961 5 http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-001920.html  View