Webkit-GTK 2.x (any version with HTML5 audio/video support based on GStreamer) allows remote attackers to trigger unexpectedly high sound volume via malicious javascript. NOTE: this WebKit-GTK behavior complies with existing W3C standards and existing practices for GNOME desktop integration.
References
Link | Resource |
---|---|
http://www.openwall.com/lists/oss-security/2014/02/10/13 | Mailing List Third Party Advisory |
https://people.canonical.com/~ubuntu-security/cve/2013/CVE-2013-7324.html | Third Party Advisory |
https://www.openwall.com/lists/oss-security/2013/10/08/4 | Mailing List Third Party Advisory |
Configurations
History
No history.
Information
Published : 2020-02-17 19:15
Updated : 2024-02-04 20:39
NVD link : CVE-2013-7324
Mitre link : CVE-2013-7324
CVE.ORG link : CVE-2013-7324
JSON object : View
Products Affected
webkitgtk
- webkitgtk
CWE
CWE-74
Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')