CVE-2011-1290

EPSS 6.10% · P91 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2011-1290

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Integer overflow in WebKit, as used on the Research In Motion (RIM) BlackBerry Torch 9800 with firmware 6.0.0.246, in Google Chrome before 10.0.648.133, and in Apple Safari before 5.0.5, allows remote attackers to execute arbitrary code via unknown vectors related to CSS "style handling," nodesets, and a length value, as demonstrated by Vincenzo Iozzo, Willem Pinckaers, and Ralf-Philipp Weinmann during a Pwn2Own competition at CanSecWest 2011.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

WebKit 数字错误漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

WebKit是一个快速、开源的网络浏览器引擎。 WebKit中存在数字错误漏洞。远程攻击者可借助与CSS样式处理节点集和超长值有关的未知向量执行任意代码。以下产品和版本受到影响：Google Chrome 10.0.648.133之前版本，Apple Safari 5.0.5之前版本，带有6.0.0.246版本固件的Research In Motion (RIM) BlackBerry Torch 9800。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2011-1290

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2011-1290

Please Login to view more intelligence information

http://www.zdnet.com/blog/security/pwn2own-2011-blackberry-falls-to-webkit-browser-attack/8401x_refsource_MISC
http://support.apple.com/kb/HT4607x_refsource_CONFIRM
http://googlechromereleases.blogspot.com/2011/03/stable-and-beta-channel-updates.htmlx_refsource_CONFIRM
http://dvlabs.tippingpoint.com/blog/2011/02/02/pwn2own-2011x_refsource_MISC
http://www.zerodayinitiative.com/advisories/ZDI-11-104x_refsource_MISC
http://support.apple.com/kb/HT4596x_refsource_CONFIRM
http://secunia.com/advisories/44154third-party-advisoryx_refsource_SECUNIA
http://www.securityfocus.com/bid/46849vdb-entryx_refsource_BID
http://secunia.com/advisories/43782third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/43748third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/43735third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/44151third-party-advisoryx_refsource_SECUNIA
http://osvdb.org/71182vdb-entryx_refsource_OSVDB
http://www.securitytracker.com/id?1025212vdb-entryx_refsource_SECTRACK
http://www.debian.org/security/2011/dsa-2192vendor-advisoryx_refsource_DEBIAN
http://www.vupen.com/english/advisories/2011/0984vdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2011/0671vdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2011/0645vdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2011/0654vdb-entryx_refsource_VUPEN
http://lists.apple.com/archives/security-announce/2011//Apr/msg00001.htmlvendor-advisoryx_refsource_APPLE
http://lists.apple.com/archives/security-announce/2011//Apr/msg00002.htmlvendor-advisoryx_refsource_APPLE
http://lists.apple.com/archives/security-announce/2011//Apr/msg00000.htmlvendor-advisoryx_refsource_APPLE
https://exchange.xforce.ibmcloud.com/vulnerabilities/66052vdb-entryx_refsource_XF
http://www.securityfocus.com/archive/1/517513/100/0/threadedmailing-listx_refsource_BUGTRAQ
https://nvd.nist.gov/vuln/detail/CVE-2011-1290

Same Patch Batch · n/a · 2011-03-11 · 42 CVEs total

CVE-2011-0159		Apple iOS Safari Settings功能用户追踪漏洞
CVE-2011-1286		Google Chrome V8无效内存访问漏洞
CVE-2011-1413		Google Chrome拒绝服务漏洞
CVE-2010-3609		VMware多个产品SLPD OpenSLP拒绝服务漏洞
CVE-2011-0456		OTRS webscript.pl命令注入漏洞
CVE-2011-1137		ProFTPD mod_sftp模块整数溢出漏洞
CVE-2011-1416		Research In Motion BlackBerry Torch内存内容读取漏洞
CVE-2011-1417		Apple iOS MobileSafari OfficeArtBlip解析整数溢出漏洞
CVE-2010-4651		GNU patch util.c目录遍历漏洞
CVE-2011-0157		Apple iOS WebKit任意代码执行漏洞
CVE-2011-0158		Apple iOS MobileSafari拒绝服务漏洞
CVE-2011-1285		Google Chrome正则表达式功能缓冲区错误漏洞
CVE-2011-0160		Apple Safari和iOS WebKit信息泄露漏洞
CVE-2011-0161		Apple Safari和iOS WebKit同源策略绕过和CSS令牌序列注入漏洞
CVE-2011-0162		Apple iOS和TV Wi-Fi拒绝服务漏洞
CVE-2011-0163		Apple Safari和iOS WebKit拒绝服务漏洞
CVE-2011-0166		Apple Safari WebKit HTML5拖放功能同源策略绕过和敏感信息泄露漏洞
CVE-2011-0167		Apple Safari WebKit windows功能同源策略绕过和任意本地文件上传漏洞
CVE-2011-0169		Apple Safari WebKit同源策略绕过和跨站脚本攻击漏洞
CVE-2011-0715		Apache HTTP服务器'mod_dav_svn'模块空指针引用漏洞

Showing top 20 of 42 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2011-1290

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2011-1290

I. Basic Information for CVE-2011-1290

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2011-1290

III. Intelligence Information for CVE-2011-1290

Same Patch Batch · n/a · 2011-03-11 · 42 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2011-1290

Leave a comment