Use-after-free vulnerability in WebKit, as used in Apple Safari before 5.0.6, allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption and application crash) via vectors related to improper list management for Cascading Style Sheets (CSS) @font-face rules.
Metrics
No CVSS v4.0
No CVSS v3.1
No CVSS v3.0
Access Vector Network
Access Complexity Low
Authentication None
Confidentiality Impact Partial
Integrity Impact Partial
Availability Impact Partial
AV:N/AC:L/Au:N/C:P/I:P/A:P
This CVE is not in the KEV list.
Key SSVC decision points have not yet been added.
Affected Vendors & Products
Vendors | Products |
---|---|
Apple |
|
Configuration 1 [-]
|
No data.
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: apple
Published: 2012-03-02T00:00:00Z
Updated: 2024-09-16T17:02:55.311Z
Reserved: 2011-09-13T00:00:00Z
Link: CVE-2011-3443
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2012-03-02T00:55:02.097
Modified: 2012-03-02T05:00:00.000
Link: CVE-2011-3443
Redhat
No data.