CVE-2011-2838

Published: Sep 19, 2011Modified: Apr 29, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

Google Chrome before 14.0.835.163 does not properly consider the MIME type during the loading of a plug-in, which has unspecified impact and remote attack vectors.

Affected (1)

Products: Google: Chrome

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Google Chrome	Before 14.0.835.163

Related CWEs

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (10)

http://code.google.com/p/chromium/issues/detail?id=75070

Source: chrome-cve-admin@google.com

http://googlechromereleases.blogspot.com/2011/09/stable-channel-update_16.html

Source: chrome-cve-admin@google.com

http://osvdb.org/75539

Source: chrome-cve-admin@google.com

https://exchange.xforce.ibmcloud.com/vulnerabilities/69865

Source: chrome-cve-admin@google.com

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14261

Source: chrome-cve-admin@google.com

http://code.google.com/p/chromium/issues/detail?id=75070

Source: af854a3a-2127-422b-91ae-364da2661108

http://googlechromereleases.blogspot.com/2011/09/stable-channel-update_16.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://osvdb.org/75539

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/69865

Source: af854a3a-2127-422b-91ae-364da2661108

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14261

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.