Back to search
CVE-2011-3845
Published: Mar 8, 2012
Modified: Aug 6, 2024
PUBLISHED
Description
Use-after-free vulnerability in Apple Safari 5.1.2, when a plug-in with a blocking function is installed, allows user-assisted remote attackers to execute arbitrary code via a crafted web page that is accessed during user interaction with the plug-in, leading to improper coordination between an API call and the plug-in unloading functionality, as demonstrated by the Adobe Flash and RealPlayer plug-ins.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
safari-plugin-code-execution(73713)
vdb-entry
x_refsource_XF
45758
third-party-advisory
x_refsource_SECUNIA
79849
vdb-entry
x_refsource_OSVDB
52325
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now