Back to search
CVE-2011-0991
Published: Apr 13, 2011
Modified: Aug 6, 2024
PUBLISHED
Description
Use-after-free vulnerability in Mono, when Moonlight 2.x before 2.4.1 or 3.x before 3.99.3 is used, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to finalizing and then resurrecting a DynamicMethod instance.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
https://bugzilla.novell.com/show_bug.cgi?id=660422
x_refsource_CONFIRM
https://github.com/mono/mono/commit/89d1455a80ef13cddee5d79ec00c06055da3085c
x_refsource_CONFIRM
momo-dynamicmethod-code-execution(66626)
vdb-entry
x_refsource_XF
https://bugzilla.novell.com/show_bug.cgi?id=667077
x_refsource_CONFIRM
47208
vdb-entry
x_refsource_BID
https://github.com/mono/mono/commit/3f8ee42b8c867d9a4c18c22657840d072cca5c3a
x_refsource_CONFIRM
[oss-security] 20110406 Moonlight release 2.4.1 with security fixes
mailing-list
x_refsource_MLIST
44002
third-party-advisory
x_refsource_SECUNIA
http://www.mono-project.com/Vulnerabilities
x_refsource_CONFIRM
44076
third-party-advisory
x_refsource_SECUNIA
[opensuse-updates] 20110408 openSUSE-SU-2011:0313-1 (critical): moonlight security update
mailing-list
x_refsource_MLIST
ADV-2011-0904
vdb-entry
x_refsource_VUPEN
https://github.com/mono/mono/commit/8eb1189099e02372fd45ca1c67230eccf1edddc0
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now