- Description
- Multiple buffer overflows in the CheckUniqueName function in W3C Amaya Web Browser 10.0.1, and possibly other versions including 11.0.1, might allow remote attackers to execute arbitrary code via "duplicated" attribute value inputs.
- Source
- cve@mitre.org
- NVD status
- Modified
CVSS 2.0
- Type
- Primary
- Base score
- 10
- Impact score
- 10
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:C/I:C/A:C
- nvd@nist.gov
- CWE-119
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:w3c:amaya_web_browser:10.0.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E1CE9DE5-7228-427A-8E6F-37DE9C000F29"
},
{
"criteria": "cpe:2.3:a:w3c:amaya_web_browser:11.0.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6CC75B09-804C-4E9B-A6A4-6AF3CB3F4440"
}
],
"operator": "OR"
}
]
}
]