CVE-2012-2859

Google Chrome before 21.0.1180.57 on Linux does not properly handle tabs, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via unspecified vectors.

CVSS v2.0 7.5 HIGH

7.5^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 10.0 / Impact : 6.4

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://code.google.com/p/chromium/issues/detail?id=137541
http://googlechromereleases.blogspot.com/2012/07/stable-channel-release.html

Configurations

Configuration 1 (hide)

AND

OR	cpe:2.3:a:google:chrome::::::::
	cpe:2.3:a:google:chrome:21.0.1180.0:::::::*
	cpe:2.3:a:google:chrome:21.0.1180.1:::::::*
	cpe:2.3:a:google:chrome:21.0.1180.2:::::::*
	cpe:2.3:a:google:chrome:21.0.1180.31:::::::*
	cpe:2.3:a:google:chrome:21.0.1180.32:::::::*
	cpe:2.3:a:google:chrome:21.0.1180.33:::::::*
	cpe:2.3:a:google:chrome:21.0.1180.34:::::::*
	cpe:2.3:a:google:chrome:21.0.1180.35:::::::*
	cpe:2.3:a:google:chrome:21.0.1180.36:::::::*
	cpe:2.3:a:google:chrome:21.0.1180.37:::::::*
	cpe:2.3:a:google:chrome:21.0.1180.38:::::::*
	cpe:2.3:a:google:chrome:21.0.1180.39:::::::*
	cpe:2.3:a:google:chrome:21.0.1180.41:::::::*
	cpe:2.3:a:google:chrome:21.0.1180.46:::::::*
	cpe:2.3:a:google:chrome:21.0.1180.47:::::::*
	cpe:2.3:a:google:chrome:21.0.1180.48:::::::*
	cpe:2.3:a:google:chrome:21.0.1180.49:::::::*
	cpe:2.3:a:google:chrome:21.0.1180.50:::::::*
	cpe:2.3:a:google:chrome:21.0.1180.51:::::::*
	cpe:2.3:a:google:chrome:21.0.1180.52:::::::*
	cpe:2.3:a:google:chrome:21.0.1180.53:::::::*
	cpe:2.3:a:google:chrome:21.0.1180.54:::::::*
	cpe:2.3:a:google:chrome:21.0.1180.55:::::::*

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2012-08-06 15:55

Updated : 2024-02-04 18:16

NVD link : CVE-2012-2859

Mitre link : CVE-2012-2859

CVE.ORG link : CVE-2012-2859

JSON object : View

Products Affected

linux

linux_kernel

google

chrome

CWE

CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

{"id": "CVE-2012-2859", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": true, "impactScore": 6.4, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2012-08-06T15:55:01.993", "references": [{"url": "http://code.google.com/p/chromium/issues/detail?id=137541", "source": "chrome-cve-admin@google.com"}, {"url": "http://googlechromereleases.blogspot.com/2012/07/stable-channel-release.html", "source": "chrome-cve-admin@google.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-119"}]}], "descriptions": [{"lang": "en", "value": "Google Chrome before 21.0.1180.57 on Linux does not properly handle tabs, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via unspecified vectors."}, {"lang": "es", "value": "Google Chrome anterior a v21.0.1180.57 en Linux no maneja correctamente las pesta\u00f1as, lo que permite a atacantes remotos ejecutar c\u00f3digo arbitrario o causar una denegaci\u00f3n de servicio (ca\u00edda de aplicaci\u00f3n) a trav\u00e9s de vectores no especificados."}], "lastModified": "2023-11-07T02:11:10.357", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "95449FAB-4F05-4CD9-AC28-050164CB52EB", "versionEndIncluding": "21.0.1180.56"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "767C0C1A-EAC4-4F98-9E80-CFDA5069F118"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0E2554F0-0DEB-41A0-A595-6A524F9EC001"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4F542051-CEED-45A4-BB83-937069D07CB2"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.31:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AC926FFC-EF03-46F0-B5B5-02B34571D6C4"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.32:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "24849FF0-F873-4365-9B82-F16AD7F4A291"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.33:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8E784307-0538-4524-94EA-A88B1ABD0E2E"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.34:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5655EFE7-69CB-469F-A00A-D6F3F7F492E4"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.35:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D3B22D68-9E32-4566-8ED1-F1CE87903F98"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.36:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "40DB1183-DFF5-4251-BCDF-2F7696ABBFA0"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.37:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8BD5341A-E508-4E5B-B03F-677D97E5A464"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.38:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E096479F-4C69-445A-8C2B-7201896F401B"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.39:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "25756B8C-FBEB-4D7F-99E6-EA7D27B07B39"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.41:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "41371794-2083-4188-90BE-506419DC0B82"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.46:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "51FF3E52-3E8E-4D2F-ABA3-B7D83219D723"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.47:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "981570FA-6B44-49A8-9C9B-7D5127E90F6C"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.48:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "36D2B7FE-2B20-47CA-9B3C-B726E21659E8"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.49:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "858BDFA4-E9CB-4537-ABA7-4283318CA501"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.50:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "76D0CD04-8EF4-4B6A-BD4F-1DFCDDDD4DED"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.51:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9E912B5D-81F3-4A93-A0E6-B1CFDE2B46EE"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.52:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B578A2BC-9360-428C-9AFE-DC9DB9E0A621"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.53:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9DCB6048-5A18-4FD6-A21B-95B595CF943C"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.54:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "28882288-859D-425C-8BA3-F46D058B61D6"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.55:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "444AD7BB-FE0B-4A51-BA89-EE2647F4E8AE"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "155AD4FB-E527-4103-BCEF-801B653DEA37"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "chrome-cve-admin@google.com"}