Attacker Value
Unknown
(0 users assessed)
Exploitability
Unknown
(0 users assessed)
User Interaction
Unknown
Privileges Required
Unknown
Attack Vector
Unknown
0

CVE-2011-3193

Disclosure Date: June 16, 2012
CVE-2011-3193
Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Description

Heap-based buffer overflow in the Lookup_MarkMarkPos function in the HarfBuzz module (harfbuzz-gpos.c), as used by Qt before 4.7.4 and Pango, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted font file.

Add Assessment

No one has assessed this topic. Be the first to add your voice to the community.

CVSS V3 Severity and Metrics
Base Score:
None
Impact Score:
Unknown
Exploitability Score:
Unknown
Vector:
Unknown
Attack Vector (AV):
Unknown
Attack Complexity (AC):
Unknown
Privileges Required (PR):
Unknown
User Interaction (UI):
Unknown
Scope (S):
Unknown
Confidentiality (C):
Unknown
Integrity (I):
Unknown
Availability (A):
Unknown

General Information

Offensive Application
Unknown
Utility Class
Unknown
Ports
Unknown
OS
Unknown
Vulnerable Versions
n/a
Prerequisites
Unknown
Discovered By
Unknown
PoC Author
Unknown
Metasploit Module
Unknown
Reporter
Unknown

Vendors

  • canonical,
  • gnome,
  • opensuse,
  • qt,
  • redhat

Products

  • enterprise linux desktop 4.0,
  • enterprise linux desktop 5.0,
  • enterprise linux desktop 6.0,
  • enterprise linux eus 6.1,
  • enterprise linux server 4.0,
  • enterprise linux server 5.0,
  • enterprise linux server 6.0,
  • enterprise linux workstation 4.0,
  • enterprise linux workstation 5.0,
  • enterprise linux workstation 6.0,
  • opensuse 11.3,
  • opensuse 11.4,
  • pango,
  • qt,
  • ubuntu linux 10.04,
  • ubuntu linux 11.04

References

Canonical
CVE-2011-3193 (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3193)
BID-49723 (http://www.securityfocus.com/bid/49723)
Advisory
SECUNIA-46371 (http://secunia.com/advisories/46371)
USN-1504-1 (http://www.ubuntu.com/usn/USN-1504-1)
[oss-security] 20120824 Re: CVE request: libqt4: two memory issues (http://www.openwall.com/lists/oss-security/2011/08/24/8)
http://lists.opensuse.org/opensuse-updates/2011-10/msg00007.html
SECUNIA-41537 (http://secunia.com/advisories/41537)
SECUNIA-46410 (http://secunia.com/advisories/46410)
http://rhn.redhat.com/errata/RHSA-2011-1327.html
http://rhn.redhat.com/errata/RHSA-2011-1325.html
[oss-security] 20120822 CVE request: libqt4: two memory issues (http://www.openwall.com/lists/oss-security/2011/08/22/6)
SECUNIA-46128 (http://secunia.com/advisories/46128)
http://rhn.redhat.com/errata/RHSA-2011-1324.html
[oss-security] 20120825 Re: CVE request: libqt4: two memory issues (http://www.openwall.com/lists/oss-security/2011/08/25/1)
SECUNIA-49895 (http://secunia.com/advisories/49895)
SECUNIA-46117 (http://secunia.com/advisories/46117)
http://rhn.redhat.com/errata/RHSA-2011-1326.html
SECUNIA-46119 (http://secunia.com/advisories/46119)
http://rhn.redhat.com/errata/RHSA-2011-1323.html
https://hermes.opensuse.org/messages/12056605
http://cgit.freedesktop.org/harfbuzz.old/commit?id=81c8ef785b079980ad5b46be4fe7c7bf156dbf65
http://rhn.redhat.com/errata/RHSA-2011-1328.html
https://qt.gitorious.org/qt/qt/commit/9ae6f2f9a57f0c3096d5785913e437953fa6775c
OSVDB-75652 (http://www.osvdb.org/75652)
SECUNIA-46118 (http://secunia.com/advisories/46118)
XF-pango-harfbuzz-bo(69991) (https://exchange.xforce.ibmcloud.com/vulnerabilities/69991)
http://lists.opensuse.org/opensuse-updates/2011-10/msg00008.html
Miscellaneous
http://git.gnome.org/browse/pango/commit/pango/opentype/harfbuzz-gpos.c?id=a7a715480db66148b1f487528887508a7991dcd0
http://cgit.freedesktop.org/harfbuzz/commit/src/harfbuzz-gpos.c?id=da2c52abcd75d46929b34cad55c4fb2c8892bc08
http://cgit.freedesktop.org/harfbuzz.old/commit/?id=81c8ef785b079980ad5b46be4fe7c7bf156dbf65

Additional Info

Authenticated
Unknown
Exploitable
Unknown
Reliability
Unknown
Stability
Unknown
Available Mitigations
Unknown
Shelf Life
Unknown
Userbase/Installbase
Unknown
Patch Effectiveness
Unknown
Technical Analysis