CVE-2011-0992
Description
Use-after-free vulnerability in Mono, when Moonlight 2.x before 2.4.1 or 3.x before 3.99.3 is used, allows remote attackers to cause a denial of service (plugin crash) or obtain sensitive information via vectors related to member data in a resurrected MonoThread instance.
Risk Information
Base Score
9.1
MODERATE
Vector
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
EPSS Score
Exploitation Probability
1.346
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Multiple Vulnerabilities are affected in Mono for Windows 2.3 | Windows |
| Mono is a platform for running and developing applications (USN-2547-1) mono-runtime_2.10.8.1-1ubuntu2.3_i386.deb | Linux |
| Mono is a platform for running and developing applications (USN-2547-1) mono-runtime_2.10.8.1-1ubuntu2.3_amd64.deb | Linux |
| Mono is a platform for running and developing applications (USN-2547-1) mono-runtime_3.2.8+dfsg-4ubuntu1.1_i386.deb | Linux |
| Mono is a platform for running and developing applications (USN-2547-1) mono-runtime_3.2.8+dfsg-4ubuntu1.1_amd64.deb | Linux |
| Mono is a platform for running and developing applications (USN-2547-1) libmono-2.0-1_2.10.8.1-1ubuntu2.3_i386.deb | Linux |
| Mono is a platform for running and developing applications (USN-2547-1) libmono-2.0-1_2.10.8.1-1ubuntu2.3_amd64.deb | Linux |
| Mono is a platform for running and developing applications (USN-2547-1) libmono-2.0-1_3.2.8+dfsg-4ubuntu1.1_i386.deb | Linux |
| Mono is a platform for running and developing applications (USN-2547-1) libmono-2.0-1_3.2.8+dfsg-4ubuntu1.1_amd64.deb | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234