CVE-2012-2864

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2012-2864
Mesa, as used in Google Chrome before 21.0.1183.0 on the Acer AC700, Cr-48, and Samsung Series 5 and 5 550 Chromebook platforms, and the Samsung Chromebox Series 3, allows remote attackers to execute arbitrary code via unspecified vectors that trigger an "array overflow."

10.0 /10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 10.0 / Impact : 10.0

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References
Link Resource
http://code.google.com/p/chromium/issues/detail?id=141901
http://googlechromereleases.blogspot.com/2012/08/stable-channel-update-for-chrome-os.html
http://secunia.com/advisories/51215
http://www.mandriva.com/security/advisories?name=MDVSA-2013:103
http://www.ubuntu.com/usn/USN-1623-1
https://wiki.mageia.org/en/Support/Advisories/MGASA-2012-0264
http://code.google.com/p/chromium/issues/detail?id=141901
http://googlechromereleases.blogspot.com/2012/08/stable-channel-update-for-chrome-os.html
http://secunia.com/advisories/51215
http://www.mandriva.com/security/advisories?name=MDVSA-2013:103
http://www.ubuntu.com/usn/USN-1623-1
https://wiki.mageia.org/en/Support/Advisories/MGASA-2012-0264
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:o:google:chrome_os:*:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:21.0.1180.0:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:21.0.1180.1:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:21.0.1180.2:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:21.0.1180.3:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:21.0.1180.4:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:21.0.1180.5:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:21.0.1180.6:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:21.0.1180.7:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:21.0.1180.8:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:21.0.1180.9:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:21.0.1180.10:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:21.0.1180.11:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:21.0.1180.13:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:21.0.1180.14:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:21.0.1180.15:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:21.0.1180.17:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:21.0.1180.18:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:21.0.1180.31:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:21.0.1180.32:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:21.0.1180.33:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:21.0.1180.34:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:21.0.1180.35:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:21.0.1180.36:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:21.0.1180.37:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:21.0.1180.38:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:21.0.1180.39:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:21.0.1180.41:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:21.0.1180.46:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:21.0.1180.47:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:21.0.1180.48:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:21.0.1180.49:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:21.0.1180.50:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:21.0.1180.79:*:*:*:*:*:*:*
OR cpe:2.3:h:acer:ac700_chromebook:-:*:*:*:*:*:*:*
cpe:2.3:h:google:cr-48_chromebook:-:*:*:*:*:*:*:*
cpe:2.3:h:samsung:series_5_550_chromebook:-:*:*:*:*:*:*:*
cpe:2.3:h:samsung:series_5_chromebook:-:*:*:*:*:*:*:*
History

21 Nov 2024, 01:39

Type Values Removed Values Added
References () http://code.google.com/p/chromium/issues/detail?id=141901 - () http://code.google.com/p/chromium/issues/detail?id=141901 -
References () http://googlechromereleases.blogspot.com/2012/08/stable-channel-update-for-chrome-os.html - () http://googlechromereleases.blogspot.com/2012/08/stable-channel-update-for-chrome-os.html -
References () http://secunia.com/advisories/51215 - () http://secunia.com/advisories/51215 -
References () http://www.mandriva.com/security/advisories?name=MDVSA-2013:103 - () http://www.mandriva.com/security/advisories?name=MDVSA-2013:103 -
References () http://www.ubuntu.com/usn/USN-1623-1 - () http://www.ubuntu.com/usn/USN-1623-1 -
References () https://wiki.mageia.org/en/Support/Advisories/MGASA-2012-0264 - () https://wiki.mageia.org/en/Support/Advisories/MGASA-2012-0264 -
Information

Published : 2012-08-22 10:42

Updated : 2024-11-21 01:39

NVD link : CVE-2012-2864

Mitre link : CVE-2012-2864

CVE.ORG link : CVE-2012-2864

JSON object : View

Products Affected

google

  • cr-48_chromebook
  • chrome_os

samsung

  • series_5_chromebook
  • series_5_550_chromebook

acer

  • ac700_chromebook
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer