PT-2011-2800 · Mono+1 · Mono+1

Rodrigo Kumpera

Publicado

2011-04-13

Atualizado

2017-08-17

CVE-2011-0992

CVSS v2.0

5.8

Média

Vetor

AV:N/AC:M/Au:N/C:P/I:N/A:P

Name of the Vulnerable Software and Affected Versions Mono versions prior to 2.4.1 Mono versions prior to 3.99.3

Description The issue is related to a use-after-free vulnerability, which can be exploited by remote attackers to cause a denial of service, resulting in a plugin crash, or to obtain sensitive information. This is achieved through vectors related to member data in a resurrected MonoThread instance.

Recommendations For versions prior to 2.4.1, update to version 2.4.1 or later. For versions prior to 3.99.3, update to version 3.99.3 or later.

Correção

DoS

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-399

Identificadores relacionados

CVE-2011-0992

USN-2547-1

Produtos afetados

Mono

Ubuntu

PT-2011-2800 · Mono+1 · Mono+1

CVE-2011-0992

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 22