CVE-2011-1300

Published: Apr 15, 2011Modified: Apr 29, 2026

10.0

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 10.0 / Impact: 10.0

Source: NVD

Description

The Program::getActiveUniformMaxLength function in libGLESv2/Program.cpp in libGLESv2.dll in the WebGLES library in Almost Native Graphics Layer Engine (ANGLE), as used in Mozilla Firefox 4.x before 4.0.1 on Windows and in the GPU process in Google Chrome before 10.0.648.205 on Windows, allows remote attackers to execute arbitrary code via unspecified vectors, related to an "off-by-three" error.

Affected (14)

Products: Mozilla: Firefox · Google: Chrome

1 product

1 product

Configuration A

13 vulnerable

Vulnerable Software	Affected Versions
Mozilla Firefox	Version 4.0
Mozilla Firefox	Version 4.0 beta10
Mozilla Firefox	Version 4.0 beta11
Mozilla Firefox	Version 4.0 beta12
Mozilla Firefox	Version 4.0 beta1
Mozilla Firefox	Version 4.0 beta2
Mozilla Firefox	Version 4.0 beta3
Mozilla Firefox	Version 4.0 beta4
Mozilla Firefox	Version 4.0 beta5
Mozilla Firefox	Version 4.0 beta6
Mozilla Firefox	Version 4.0 beta7
Mozilla Firefox	Version 4.0 beta8
Mozilla Firefox	Version 4.0 beta9

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Google Chrome	Before 10.0.648.205

Running on/with	Platform Versions
Microsoft Windows	All versions

Related CWEs

References (22)

http://code.google.com/p/angleproject/source/detail?r=611

Source: cve@mitre.org

Vendor Advisory

http://code.google.com/p/chromium/issues/detail?id=70070

Source: cve@mitre.org

Vendor Advisory

http://googlechromereleases.blogspot.com/2011/04/stable-channel-update.html

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/44141

Source: cve@mitre.org

Vendor Advisory

http://www.mozilla.org/security/announce/2011/mfsa2011-17.html

Source: cve@mitre.org

Vendor Advisory

http://www.securityfocus.com/bid/47377

Source: cve@mitre.org

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id?1025377

Source: cve@mitre.org

Third Party AdvisoryVDB Entry

http://www.vupen.com/english/advisories/2011/1006

Source: cve@mitre.org

Vendor Advisory

https://bugzilla.mozilla.org/show_bug.cgi?id=623791

Source: cve@mitre.org

Issue TrackingVendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/66766

Source: cve@mitre.org

Third Party AdvisoryVDB Entry

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14466

Source: cve@mitre.org

Third Party Advisory

http://code.google.com/p/angleproject/source/detail?r=611

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://code.google.com/p/chromium/issues/detail?id=70070

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://googlechromereleases.blogspot.com/2011/04/stable-channel-update.html

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://secunia.com/advisories/44141

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.mozilla.org/security/announce/2011/mfsa2011-17.html

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.securityfocus.com/bid/47377

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id?1025377

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

http://www.vupen.com/english/advisories/2011/1006

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://bugzilla.mozilla.org/show_bug.cgi?id=623791

Source: af854a3a-2127-422b-91ae-364da2661108

Issue TrackingVendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/66766

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14466

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

Timeline

No history available yet.