1. Home
  2. CVE Database
  3. CVE-2011-2601
HIGH · 7.1

CVE-2011-2601

The GPU support functionality in Mac OS X does not properly restrict rendering time, which allows remote attackers to cause a denial of service (desktop hang) via vectors involving WebGL and (1) shade...

Vulnerability Description

The GPU support functionality in Mac OS X does not properly restrict rendering time, which allows remote attackers to cause a denial of service (desktop hang) via vectors involving WebGL and (1) shader programs or (2) complex 3D geometry, as demonstrated by using Mozilla Firefox or Google Chrome to visit the lots-of-polys-example.html test page in the Khronos WebGL SDK.

CVSS Score

7.1

HIGH

AV:N/AC:M/Au:N/C:N/I:N/A:C
Confidentiality
NONE
Integrity
NONE
Availability
COMPLETE

Affected Products

VendorProductVersions
AppleMac Os XAll versions

Related Weaknesses (CWE)

CWE-264

References

FAQ

What is CVE-2011-2601?

CVE-2011-2601 is a vulnerability with a CVSS score of 7.1 (HIGH). The GPU support functionality in Mac OS X does not properly restrict rendering time, which allows remote attackers to cause a denial of service (desktop hang) via vectors involving WebGL and (1) shade...

How severe is CVE-2011-2601?

CVE-2011-2601 has been rated HIGH with a CVSS base score of 7.1/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2011-2601?

Check the references section above for vendor advisories and patch information. Affected products include: Apple Mac Os X.