CVE-2011-3256

Scores

EPSS

0.032very_low3.2%

0%20%40%60%80%100%

Percentile: 3.2%

CVSS

6.8medium2.0

0246810

CVSS Score: 6.8/10

All CVSS Scores

CVSS 2.0

6.8

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Description

FreeType 2 before 2.4.7, as used in CoreGraphics in Apple iOS before 5, Mandriva Enterprise Server 5, and possibly other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted font, a different vulnerability than CVE-2011-0226.

Scaner-VS 7 — a modern vulnerability management solution

Uses this database for vulnerability detection. High-speed search, cross-platform, advanced configuration audit, and flexible filtering. Suitable for organizations of any size.

Learn more about Scaner-VS 7

Sources

debiannvdredhatubuntu

CWEs

CWE-190CWE-94

Related Vulnerabilities

BDU:2015-04433 BDU:2015-04434 BDU:2015-04435 BDU:2015-04436 BDU:2015-04652 BDU:2015-04653 BDU:2015-09431

Exploits

Exploit ID: 14538

Source: exploitdb

URL: https://www.exploit-db.com/exploits/14538

Exploit ID: 14727

Source: exploitdb

URL: https://www.exploit-db.com/exploits/14727

Vulnerable Software (7)

Type: Configuration

Product: freetype

Operating System: ubuntu hardy 8.04

Trait:

{  "fixed": "2.3.5-1ubuntu4.8.04.7"}

Source: ubuntu

Type: Configuration

Product: freetype

Operating System: rhel 4

Trait:

{  "fixed": "2.1.9-20.el4"}

Source: redhat

Type: Configuration

Product: freetype

Operating System: rhel 5

Trait:

{  "fixed": "2.2.1-28.el5_7.1"}

Source: redhat

Type: Configuration

Product: freetype

Operating System: rhel 5.6

Trait:

{  "fixed": "2.2.1-28.el5_6.1"}

Source: redhat

Type: Configuration

Product: freetype

Operating System: rhel 6

Trait:

{  "fixed": "2.3.11-6.el6_1.7"}

Source: redhat

Type: Configuration

Product: freetype

Operating System: debian

Trait:

{  "fixed": "2.4.7-1"}

Source: debian

Type: Configuration

Vendor: *

Product: iphone_os

Operating System: * * *

Trait:

{  "cpe_match": [    {      "cpe23uri": "cpe:2.3:o:apple:iphone_os:3.0:-:iphone:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:o:apple:iphone_os:3.1:*:*:*:*:*:*:*",  ...

{  "cpe_match": [    {      "cpe23uri": "cpe:2.3:o:apple:iphone_os:3.0:-:iphone:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:o:apple:iphone_os:3.1:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:o:apple:iphone_os:3.1:-:iphone:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:o:apple:iphone_os:3.1:-:ipodtouch:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:o:apple:iphone_os:3.1.2:-:iphone:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:o:apple:iphone_os:3.1.3:-:iphone:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:o:apple:iphone_os:3.2:-:iphone:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:o:apple:iphone_os:3.2:-:ipodtouch:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:o:apple:iphone_os:3.2.1:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:o:apple:iphone_os:3.2.1:-:ipad:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:o:apple:iphone_os:3.2.2:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:o:apple:iphone_os:4.0:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:o:apple:iphone_os:4.0:-:iphone:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:o:apple:iphone_os:4.0:-:ipodtouch:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:o:apple:iphone_os:4.0.1:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:o:apple:iphone_os:4.0.1:-:iphone:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:o:apple:iphone_os:4.0.1:-:ipodtouch:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:o:apple:iphone_os:4.0.2:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:o:apple:iphone_os:4.1:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:o:apple:iphone_os:4.2.1:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:o:apple:iphone_os:4.2.5:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:o:apple:iphone_os:4.2.8:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:o:apple:iphone_os:4.3.0:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:o:apple:iphone_os:4.3.1:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:o:apple:iphone_os:4.3.2:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:o:apple:iphone_os:4.3.3:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:o:apple:iphone_os:4.3.5:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:o:apple:iphone_os:4.3.5:-:ipad:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:o:apple:iphone_os:4.3.5:-:ipodtouch:*:*:*:*:*",      "vulnerable": true    }  ],  "operator": "OR"}

Source: nvd

End of list

Russian Vulnerability Scanner Database

CVE-2011-3256

Scores

EPSS

CVSS

All CVSS Scores

Vector Breakdown

CVSS

Attack Vector

Attack Complexity

Authentication

Confidentiality Impact

Integrity Impact

Availability Impact

Description

Scaner-VS 7 — a modern vulnerability management solution

Sources

CWEs

Related Vulnerabilities

Exploits

Vulnerable Software (7)