The Program::getActiveUniformMaxLength function in libGLESv2/Program.cpp in libGLESv2.dll in the WebGLES library in Almost Native Graphics Layer Engine (ANGLE), as used in Mozilla Firefox 4.x before 4.0.1 on Windows and in the GPU process in Google Chrome before 10.0.648.205 on Windows, allows remote attackers to execute arbitrary code via unspecified vectors, related to an "off-by-three" error.
References
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
History
21 Nov 2024, 01:26
Type | Values Removed | Values Added |
---|---|---|
References | () http://code.google.com/p/angleproject/source/detail?r=611 - Vendor Advisory | |
References | () http://code.google.com/p/chromium/issues/detail?id=70070 - Vendor Advisory | |
References | () http://googlechromereleases.blogspot.com/2011/04/stable-channel-update.html - Vendor Advisory | |
References | () http://secunia.com/advisories/44141 - Vendor Advisory | |
References | () http://www.mozilla.org/security/announce/2011/mfsa2011-17.html - Vendor Advisory | |
References | () http://www.securityfocus.com/bid/47377 - Third Party Advisory, VDB Entry | |
References | () http://www.securitytracker.com/id?1025377 - Third Party Advisory, VDB Entry | |
References | () http://www.vupen.com/english/advisories/2011/1006 - Vendor Advisory | |
References | () https://bugzilla.mozilla.org/show_bug.cgi?id=623791 - Issue Tracking, Vendor Advisory | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/66766 - Third Party Advisory, VDB Entry | |
References | () https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14466 - Third Party Advisory |
Information
Published : 2011-04-15 19:55
Updated : 2024-11-21 01:26
NVD link : CVE-2011-1300
Mitre link : CVE-2011-1300
CVE.ORG link : CVE-2011-1300
JSON object : View
Products Affected
mozilla
- firefox
microsoft
- windows
- chrome
CWE
CWE-189
Numeric Errors