Vulnerability Name: | CVE-2011-1446 (CCN-67153) |
Assigned: | 2011-04-27 |
Published: | 2011-04-27 |
Updated: | 2020-05-22 |
Summary: | Google Chrome before 11.0.696.57 allows remote attackers to spoof the URL bar via vectors involving (1) a navigation error or (2) an interrupted load.
|
CVSS v3 Severity: | 5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)Exploitability Metrics: | Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None | Scope: | Scope (S): Unchanged
| Impact Metrics: | Confidentiality (C): None Integrity (I): Low Availibility (A): None |
|
CVSS v2 Severity: | 5.8 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:N) 4.3 Medium (Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:N/E:U/RL:OF/RC:C)Exploitability Metrics: | Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): None | Impact Metrics: | Confidentiality (C): Partial Integrity (I): Partial Availibility (A): None | 4.3 Medium (CCN CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N) 3.2 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N/E:U/RL:OF/RC:C)Exploitability Metrics: | Access Vector (AV): Network Access Complexity (AC): Medium Athentication (Au): None
| Impact Metrics: | Confidentiality (C): None Integrity (I): Partial Availibility (A): None |
|
Vulnerability Type: | CWE-noinfo
|
Vulnerability Consequences: | Gain Access |
References: | Source: CONFIRM Type: Exploit, Issue Tracking, Patch, Vendor Advisory http://code.google.com/p/chromium/issues/detail?id=76666
Source: CONFIRM Type: Exploit, Issue Tracking, Patch, Vendor Advisory http://code.google.com/p/chromium/issues/detail?id=77507
Source: CONFIRM Type: Exploit, Issue Tracking, Patch, Vendor Advisory http://code.google.com/p/chromium/issues/detail?id=78031
Source: MITRE Type: CNA CVE-2011-1446
Source: CONFIRM Type: Vendor Advisory http://googlechromereleases.blogspot.com/2011/04/chrome-stable-update.html
Source: CCN Type: Google Chrome Releases Web site Chrome Stable Update
Source: CCN Type: SA44375 Google Chrome Multiple Vulnerabilities
Source: CCN Type: OSVDB ID: 72211 Google Chrome Navigation Error Interrupted Load URL Spoofing Weakness
Source: CCN Type: BID-47604 Google Chrome Prior to 11.0.696.57 Multiple Security Vulnerabilities
Source: XF Type: Third Party Advisory, VDB Entry chrome-navigation-spoofing(67153)
Source: XF Type: UNKNOWN chrome-navigation-spoofing(67153)
Source: OVAL Type: Third Party Advisory oval:org.mitre.oval:def:14560
|
Vulnerable Configuration: | Configuration 1: cpe:/a:google:chrome:*:*:*:*:*:*:*:* (Version < 11.0.696.57) Configuration CCN 1: cpe:/a:google:chrome:10.0.648.82:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.601.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.602.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.603.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.603.2:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.603.3:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.604.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.605.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.606.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.607.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.608.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.609.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.610.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.611.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.611.1:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.612.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.612.1:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.612.2:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.612.3:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.613.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.614.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.615.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.616.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.617.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.618.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.619.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.620.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.621.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.622.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.622.1:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.623.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.624.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.625.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.626.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.627.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.628.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.629.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.630.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.631.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.632.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.633.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.634.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.634.1:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.635.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.636.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.638.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.638.1:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.639.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.640.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.642.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.642.1:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.642.2:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.643.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.644.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.645.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.646.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.647.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.1:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.10:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.101:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.103:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.105:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.107:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.11:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.114:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.116:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.118:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.119:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.12:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.120:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.121:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.122:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.123:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.124:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.125:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.126:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.127:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.128:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.129:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.13:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.130:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.131:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.132:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.133:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.134:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.135:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.151:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.18:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.2:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.201:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.203:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.23:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.26:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.28:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.3:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.32:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.35:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.38:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.4:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.42:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.45:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.49:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.5:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.54:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.56:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.59:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.6:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.62:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.66:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.68:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.7:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.70:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.72:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.76:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.79:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.8:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.84:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.87:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.9:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.90:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.649.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.650.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.651.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.204:*:*:*:*:*:*:*OR cpe:/a:google:chrome:10.0.648.205:*:*:*:*:*:*:*
Denotes that component is vulnerable |
Oval Definitions |
Definition ID | Class | Title | Last Modified |
---|
oval:org.mitre.oval:def:14560 | V | Google Chrome before 11.0.696.57 allows remote attackers to spoof the URL bar via vectors involving (1) a navigation error or (2) an interrupted load. | 2014-04-07 |
|
BACK |
google chrome *
google chrome 10.0.648.82
google chrome 10.0.601.0
google chrome 10.0.602.0
google chrome 10.0.603.0
google chrome 10.0.603.2
google chrome 10.0.603.3
google chrome 10.0.604.0
google chrome 10.0.605.0
google chrome 10.0.606.0
google chrome 10.0.607.0
google chrome 10.0.608.0
google chrome 10.0.609.0
google chrome 10.0.610.0
google chrome 10.0.611.0
google chrome 10.0.611.1
google chrome 10.0.612.0
google chrome 10.0.612.1
google chrome 10.0.612.2
google chrome 10.0.612.3
google chrome 10.0.613.0
google chrome 10.0.614.0
google chrome 10.0.615.0
google chrome 10.0.616.0
google chrome 10.0.617.0
google chrome 10.0.618.0
google chrome 10.0.619.0
google chrome 10.0.620.0
google chrome 10.0.621.0
google chrome 10.0.622.0
google chrome 10.0.622.1
google chrome 10.0.623.0
google chrome 10.0.624.0
google chrome 10.0.625.0
google chrome 10.0.626.0
google chrome 10.0.627.0
google chrome 10.0.628.0
google chrome 10.0.629.0
google chrome 10.0.630.0
google chrome 10.0.631.0
google chrome 10.0.632.0
google chrome 10.0.633.0
google chrome 10.0.634.0
google chrome 10.0.634.1
google chrome 10.0.635.0
google chrome 10.0.636.0
google chrome 10.0.638.0
google chrome 10.0.638.1
google chrome 10.0.639.0
google chrome 10.0.640.0
google chrome 10.0.642.0
google chrome 10.0.642.1
google chrome 10.0.642.2
google chrome 10.0.643.0
google chrome 10.0.644.0
google chrome 10.0.645.0
google chrome 10.0.646.0
google chrome 10.0.647.0
google chrome 10.0.648.0
google chrome 10.0.648.1
google chrome 10.0.648.10
google chrome 10.0.648.101
google chrome 10.0.648.103
google chrome 10.0.648.105
google chrome 10.0.648.107
google chrome 10.0.648.11
google chrome 10.0.648.114
google chrome 10.0.648.116
google chrome 10.0.648.118
google chrome 10.0.648.119
google chrome 10.0.648.12
google chrome 10.0.648.120
google chrome 10.0.648.121
google chrome 10.0.648.122
google chrome 10.0.648.123
google chrome 10.0.648.124
google chrome 10.0.648.125
google chrome 10.0.648.126
google chrome 10.0.648.127
google chrome 10.0.648.128
google chrome 10.0.648.129
google chrome 10.0.648.13
google chrome 10.0.648.130
google chrome 10.0.648.131
google chrome 10.0.648.132
google chrome 10.0.648.133
google chrome 10.0.648.134
google chrome 10.0.648.135
google chrome 10.0.648.151
google chrome 10.0.648.18
google chrome 10.0.648.2
google chrome 10.0.648.201
google chrome 10.0.648.203
google chrome 10.0.648.23
google chrome 10.0.648.26
google chrome 10.0.648.28
google chrome 10.0.648.3
google chrome 10.0.648.32
google chrome 10.0.648.35
google chrome 10.0.648.38
google chrome 10.0.648.4
google chrome 10.0.648.42
google chrome 10.0.648.45
google chrome 10.0.648.49
google chrome 10.0.648.5
google chrome 10.0.648.54
google chrome 10.0.648.56
google chrome 10.0.648.59
google chrome 10.0.648.6
google chrome 10.0.648.62
google chrome 10.0.648.66
google chrome 10.0.648.68
google chrome 10.0.648.7
google chrome 10.0.648.70
google chrome 10.0.648.72
google chrome 10.0.648.76
google chrome 10.0.648.79
google chrome 10.0.648.8
google chrome 10.0.648.84
google chrome 10.0.648.87
google chrome 10.0.648.9
google chrome 10.0.648.90
google chrome 10.0.649.0
google chrome 10.0.650.0
google chrome 10.0.651.0
google chrome 10.0.648.204
google chrome 10.0.648.205