RETIRED: Google Chrome Prior to 26.0.1410.43 Multiple Security Vulnerabilities
BID:58712
Info
RETIRED: Google Chrome Prior to 26.0.1410.43 Multiple Security Vulnerabilities
| Bugtraq ID: | 58712 |
| Class: | Unknown |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Mar 26 2013 12:00AM |
| Updated: | Mar 27 2013 07:56PM |
| Credit: | Atte Kettunen of OUSPG, t3553r, Michael Vrable of Google, Cris Neckar, Mustafa Emre Acer of Google Chrome Security Team, Vsevolod Vlasov, Benjamin Kalman of the Chromium development community, Subho Halder, Aditya Gupta, and Dev Kar of xys3c. |
| Vulnerable: |
Google Chrome 17.0.963 79 Google Chrome 17.0.963 65 Google Chrome 15.0.874 102 Google Chrome 2.0.172 .43 Google Chrome 2.0.172 .37 Google Chrome 2.0.172 .33 Google Chrome 2.0.172 .31 Google Chrome 2.0.172 .30 Google Chrome 19.0.1084.52 Google Chrome 19 Google Chrome 18.0.1025.168 Google Chrome 18.0.1025.162 Google Chrome 18.0.1025.151 Google Chrome 18.0.1025.142 Google Chrome 17.0.963.83 Google Chrome 17.0.963.78 Google Chrome 17.0.963.60 Google Chrome 17.0.963.56 Google Chrome 17.0.963.46 Google Chrome 16.0.912.77 Google Chrome 16.0.912.75 Google Chrome 16.0.912.63 Google Chrome 16 Google Chrome 15.0.874.121 Google Chrome 15.0.874.120 Google Chrome 14.0.835.202 Google Chrome 14.0.835.186 Google Chrome 14.0.835.163 Google Chrome 14 Google Chrome 13.0.782.215 Google Chrome 13.0.782.112 Google Chrome 13.0.782.107 Google Chrome 13 Google Chrome 12.0.742.91 Google Chrome 12.0.742.112 Google Chrome 12.0.742.100 Google Chrome 12 Google Chrome 11.0.696.77 Google Chrome 11.0.696.71 Google Chrome 11.0.696.68 Google Chrome 11.0.696.65 Google Chrome 11.0.696.57 Google Chrome 11.0.696.43 Google Chrome 11.0.672.2 Google Chrome 11 Google Chrome 10.0.648.205 Google Chrome 10.0.648.205 Google Chrome 10.0.648.204 Google Chrome 10.0.648.133 Google Chrome 10.0.648.128 Google Chrome 10.0.648.127 Google Chrome 10 |
| Not Vulnerable: | |
Discussion
RETIRED: Google Chrome Prior to 26.0.1410.43 Multiple Security Vulnerabilities
Google Chrome is prone to multiple vulnerabilities.
Attackers can exploit these issues to execute arbitrary code in the context of the browser, cause denial-of-service conditions, and bypass security restrictions; other attacks may also be possible.
Versions prior to Chrome 26.0.1410.43 are vulnerable.
This BID is being retired. The following individual records exist to better document the issues:
58724 Google Chrome CVE-2013-0916 Use-After-Free Memory Corruption Vulnerability
58725 Google Chrome CVE-2013-0917 Out-of-Bounds Read Vulnerability
58723 Google Chrome Prior to 26.0.1410.43 Unspecified Security Vulnerability
58727 Google Chrome CVE-2013-0919 Use-After-Free Memory Corruption Vulnerability
58730 Google Chrome CVE-2013-0920 Use-After-Free Memory Corruption Vulnerability
58728 Google Chrome Prior to 26.0.1410.43 CVE-2013-0921 Unspecified Security Vulnerability
58729 Google Chrome Prior to 26.0.1410.43 CVE-2013-0922 Unspecified Security Vulnerability
58733 Google Chrome Prior to 26.0.1410.43 CVE-2013-0924 Unspecified Security Vulnerability
58731 Google Chrome CVE-2013-0926 Unspecified Security Vulnerability
58734 Google Chrome Prior to 26.0.1410.43 CVE-2013-0923 Unspecified Security Vulnerability
58732 Google Chrome CVE-2013-0925 Information Disclosure Vulnerability
Google Chrome is prone to multiple vulnerabilities.
Attackers can exploit these issues to execute arbitrary code in the context of the browser, cause denial-of-service conditions, and bypass security restrictions; other attacks may also be possible.
Versions prior to Chrome 26.0.1410.43 are vulnerable.
This BID is being retired. The following individual records exist to better document the issues:
58724 Google Chrome CVE-2013-0916 Use-After-Free Memory Corruption Vulnerability
58725 Google Chrome CVE-2013-0917 Out-of-Bounds Read Vulnerability
58723 Google Chrome Prior to 26.0.1410.43 Unspecified Security Vulnerability
58727 Google Chrome CVE-2013-0919 Use-After-Free Memory Corruption Vulnerability
58730 Google Chrome CVE-2013-0920 Use-After-Free Memory Corruption Vulnerability
58728 Google Chrome Prior to 26.0.1410.43 CVE-2013-0921 Unspecified Security Vulnerability
58729 Google Chrome Prior to 26.0.1410.43 CVE-2013-0922 Unspecified Security Vulnerability
58733 Google Chrome Prior to 26.0.1410.43 CVE-2013-0924 Unspecified Security Vulnerability
58731 Google Chrome CVE-2013-0926 Unspecified Security Vulnerability
58734 Google Chrome Prior to 26.0.1410.43 CVE-2013-0923 Unspecified Security Vulnerability
58732 Google Chrome CVE-2013-0925 Information Disclosure Vulnerability
Exploit / POC
RETIRED: Google Chrome Prior to 26.0.1410.43 Multiple Security Vulnerabilities
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Some of these issues may be trivial to exploit and will not require specific exploit code.
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Some of these issues may be trivial to exploit and will not require specific exploit code.
Solution / Fix
RETIRED: Google Chrome Prior to 26.0.1410.43 Multiple Security Vulnerabilities
Solution:
Updates are available. Please see the references or vendor advisory for more information.
Solution:
Updates are available. Please see the references or vendor advisory for more information.
References
RETIRED: Google Chrome Prior to 26.0.1410.43 Multiple Security Vulnerabilities
References:
References:
- Google Chrome Homepage (Google)