CVE-2011-0991

N/A Unknown

Published: April 13, 2011 Modified: April 29, 2026

Description

Use-after-free vulnerability in Mono, when Moonlight 2.x before 2.4.1 or 3.x before 3.99.3 is used, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to finalizing and then resurrecting a DynamicMethod instance.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://lists.opensuse.org/opensuse-updates/2011-04/msg00024.html

Source: cve@mitre.org

http://openwall.com/lists/oss-security/2011/04/06/14

Source: cve@mitre.org

Patch

http://secunia.com/advisories/44002

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/44076

Source: cve@mitre.org

Vendor Advisory

http://www.mono-project.com/Vulnerabilities

Source: cve@mitre.org

Vendor Advisory

http://www.securityfocus.com/bid/47208

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2011/0904

Source: cve@mitre.org

Vendor Advisory

https://bugzilla.novell.com/show_bug.cgi?id=660422

Source: cve@mitre.org

https://bugzilla.novell.com/show_bug.cgi?id=667077

Source: cve@mitre.org

Patch

https://exchange.xforce.ibmcloud.com/vulnerabilities/66626

Source: cve@mitre.org

https://github.com/mono/mono/commit/3f8ee42b8c867d9a4c18c22657840d072cca5c3a

Source: cve@mitre.org

Patch

https://github.com/mono/mono/commit/89d1455a80ef13cddee5d79ec00c06055da3085c

Source: cve@mitre.org

Patch

https://github.com/mono/mono/commit/8eb1189099e02372fd45ca1c67230eccf1edddc0

Source: cve@mitre.org

Patch

http://lists.opensuse.org/opensuse-updates/2011-04/msg00024.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://openwall.com/lists/oss-security/2011/04/06/14

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

http://secunia.com/advisories/44002

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://secunia.com/advisories/44076

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.mono-project.com/Vulnerabilities

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.securityfocus.com/bid/47208

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2011/0904

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://bugzilla.novell.com/show_bug.cgi?id=660422

Source: af854a3a-2127-422b-91ae-364da2661108

https://bugzilla.novell.com/show_bug.cgi?id=667077

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://exchange.xforce.ibmcloud.com/vulnerabilities/66626

Source: af854a3a-2127-422b-91ae-364da2661108

https://github.com/mono/mono/commit/3f8ee42b8c867d9a4c18c22657840d072cca5c3a

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://github.com/mono/mono/commit/89d1455a80ef13cddee5d79ec00c06055da3085c

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://github.com/mono/mono/commit/8eb1189099e02372fd45ca1c67230eccf1edddc0

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

26 reference(s) from NVD

Quick Stats

CVSS v3 Score

N/A / 10.0

EPSS (Exploit Probability)

2.9%

85th percentile

Exploitation Status

Not in CISA KEV

Weaknesses (CWE)

CWE-399

Affected Vendors

novell mono

Related CVEs

CVE-2026-9699 6.8

CVE-2026-57667 8.5

CVE-2026-57665 5.3

CVE-2026-57664 4.3

CVE-2026-57663 8.5