Страницы

Security advisories

CVE-2011-3880
Don’t permit as a HTTP header delimiter.
Google Chrome before 15.0.874.102 does not prevent use of an unspecified special character as a delimiter in HTTP headers, which has unknown impact and remote attack vectors.
CVSS v2 Base Score:7.5 (HIGH) (AV:N/AC:L/Au:N/C:P/I:P/A:P) (legend)
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3880

CVE-2011-2431
Adobe Acrobat and Reader CVE-2011-2431 Remote Security Bypass Vulnerability
Adobe Reader and Acrobat 8.x before 8.3.1, 9.x before 9.4.6, and 10.x before 10.1.1 allow attackers to execute arbitrary code via unspecified vectors, related to a "security bypass vulnerability."
CVSS v2 Base Score:9.3 (HIGH) (AV:N/AC:M/Au:N/C:C/I:C/A:C) (legend)
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-2431

CVE-2011-2822
URL parsing confusion on the command line.
Google Chrome before 13.0.782.215 on Windows does not properly parse URLs located on the command line, which has unspecified impact and attack vectors.
CVSS v2 Base Score:10.0 (HIGH) (AV:N/AC:L/Au:N/C:C/I:C/A:C) (legend)
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-2822