Vulnerability CVE-2011-1806 - CERT Civis.Net

Vulnerability Name:

CVE-2011-1806 (CCN-67617)

Assigned:

2011-05-24

Published:

2011-05-24

Updated:

2020-05-22

Summary:

Google Chrome before 11.0.696.71 does not properly implement the GPU command buffer, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors.

CVSS v3 Severity:

7.3 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): Low Availibility (A): Low

CVSS v2 Severity:

10.0 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)
7.4 High (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

6.8 Medium (CCN CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P)
5.0 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Athentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

Vulnerability Type:

Vulnerability Consequences:

Gain Access

References:

Source: CONFIRM
Type: Exploit, Issue Tracking, Patch, Vendor Advisory
http://code.google.com/p/chromium/issues/detail?id=82873

Source: MITRE
Type: CNA
CVE-2011-1806

Source: CCN
Type: Google Chrome Releases Web site
Stable Channel Update

Source: CONFIRM
Type: Vendor Advisory
http://googlechromereleases.blogspot.com/2011/05/stable-channel-update_24.html

Source: CCN
Type: SA44678
Google Chrome Multiple Vulnerabilities

Source: CCN
Type: SA44813
SRWare Iron Multiple Vulnerabilities

Source: CCN
Type: OSVDB ID: 72505
Google Chrome GPU Command Buffer Memory Corruption

Source: BID
Type: Third Party Advisory, VDB Entry
47964

Source: CCN
Type: BID-47964
Google Chrome GPU Command Buffer Memory Corruption Vulnerability

Source: XF
Type: UNKNOWN
chrome-gpu-command-code-execution(67617)

Source: OVAL
Type: Third Party Advisory
oval:org.mitre.oval:def:14389

Vulnerable Configuration:

Configuration 1:

cpe:/a:google:chrome:*:*:*:*:*:*:*:* (Version < 11.0.696.71)

Configuration CCN 1:

cpe:/a:google:chrome:11.0.696.13:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.652.0:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.653.0:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.654.0:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.655.0:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.656.0:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.657.0:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.658.0:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.658.1:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.659.0:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.660.0:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.661.0:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.662.0:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.663.0:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.664.1:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.665.0:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.666.0:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.667.0:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.667.2:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.667.3:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.667.4:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.668.0:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.669.0:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.670.0:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.671.0:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.672.0:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.672.1:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.672.2:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.673.0:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.674.0:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.675.0:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.676.0:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.677.0:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.678.0:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.679.0:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.680.0:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.681.0:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.682.0:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.683.0:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.684.0:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.685.0:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.686.0:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.686.1:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.686.2:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.686.3:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.687.0:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.687.1:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.688.0:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.689.0:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.690.0:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.690.1:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.691.0:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.692.0:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.693.0:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.694.0:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.695.0:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.696.0:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.696.1:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.696.10:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.696.11:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.696.12:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.696.14:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.696.15:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.696.16:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.696.17:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.696.18:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.696.19:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.696.2:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.696.20:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.696.21:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.696.22:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.696.23:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.696.24:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.696.25:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.696.26:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.696.27:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.696.28:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.696.29:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.696.3:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.696.30:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.696.31:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.696.32:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.696.33:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.696.34:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.696.35:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.696.36:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.696.37:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.696.38:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.696.39:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.696.4:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.696.40:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.696.41:*:*:*:*:*:*:*

OR cpe:/a:google:chrome:11.0.696.42:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.mitre.oval:def:14389	V	Google Chrome before 11.0.696.71 does not properly implement the GPU command buffer, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors.	2014-04-07
oval:com.ubuntu.precise:def:20111806000	V	CVE-2011-1806 on Ubuntu 12.04 LTS (precise) - medium.	2011-05-26
oval:com.ubuntu.xenial:def:201118060000000	V	CVE-2011-1806 on Ubuntu 16.04 LTS (xenial) - medium.	2011-05-26
oval:com.ubuntu.trusty:def:20111806000	V	CVE-2011-1806 on Ubuntu 14.04 LTS (trusty) - medium.	2011-05-26
oval:com.ubuntu.xenial:def:20111806000	V	CVE-2011-1806 on Ubuntu 16.04 LTS (xenial) - medium.	2011-05-26