PT-2011-1116 · Red Hat · Spice-Xpi+1

Petr Matousek

Published

2011-04-07

Updated

2024-03-12

CVE-2011-1179

CVSS v2.0

5.1

Medium

Vector

AV:N/AC:H/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions spice-xpi versions 2.2 through 2.4

Description The issue affects the confidentiality, integrity, and availability of protected information. It can be exploited remotely, potentially leading to a denial of service (crash) and possibly the execution of arbitrary code. The exploitation is related to vectors involving plugin/nsScriptablePeer.cpp and plugin/plugin.cpp, which trigger multiple uses of an uninitialized pointer.

Recommendations For versions 2.2 through 2.4, consider disabling the spice-xpi plugin as a temporary workaround until a patch is available. Restrict access to the plugin to minimize the risk of exploitation. Avoid using the affected plugin in sensitive operations until the issue is resolved.

Exploit

Fix

DoS

Buffer Overflow

Link Following

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119CWE-59

Related Identifiers

BDU:2015-06538

BDU:2015-06539

CVE-2011-1179

RHSA-2011:0426

RHSA-2011:0427

RHSA-2011_0426

RHSA-2011_0427

ROSA-SA-2024-2371

Affected Products

Red Hat

Spice-Xpi

PT-2011-1116 · Red Hat · Spice-Xpi+1

CVE-2011-1179

Weakness Enumeration

Related Identifiers

Affected Products

References · 108