Lucene search
HistoryOct 03, 2022 - 4:15 p.m.
CVE-2013-0843
google chrome
cve-2013-0843
buffer size
denial of service
memory corruption
application crash
webrtc audio
mac os x
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
7.6 High
AI Score
Confidence
High
0.005 Low
EPSS
Percentile
75.3%
content/renderer/media/webrtc_audio_renderer.cc in Google Chrome before 24.0.1312.56 on Mac OS X does not use an appropriate buffer size for the 96 kHz sampling rate, which allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via a web site that provides WebRTC audio.
Affected configurations
Node
googlechromeMatch24.0.1272.0
ORgooglechromeMatch24.0.1272.1
ORgooglechromeMatch24.0.1273.0
ORgooglechromeMatch24.0.1274.0
ORgooglechromeMatch24.0.1275.0
ORgooglechromeMatch24.0.1276.0
ORgooglechromeMatch24.0.1276.1
ORgooglechromeMatch24.0.1277.0
ORgooglechromeMatch24.0.1278.0
ORgooglechromeMatch24.0.1279.0
ORgooglechromeMatch24.0.1280.0
ORgooglechromeMatch24.0.1281.0
ORgooglechromeMatch24.0.1281.1
ORgooglechromeMatch24.0.1281.2
ORgooglechromeMatch24.0.1281.3
ORgooglechromeMatch24.0.1282.0
ORgooglechromeMatch24.0.1283.0
ORgooglechromeMatch24.0.1284.0
ORgooglechromeMatch24.0.1284.1
ORgooglechromeMatch24.0.1284.2
ORgooglechromeMatch24.0.1285.0
ORgooglechromeMatch24.0.1285.1
ORgooglechromeMatch24.0.1285.2
ORgooglechromeMatch24.0.1286.0
ORgooglechromeMatch24.0.1286.1
ORgooglechromeMatch24.0.1287.0
ORgooglechromeMatch24.0.1287.1
ORgooglechromeMatch24.0.1288.0
ORgooglechromeMatch24.0.1288.1
ORgooglechromeMatch24.0.1289.0
ORgooglechromeMatch24.0.1289.1
ORgooglechromeMatch24.0.1290.0
ORgooglechromeMatch24.0.1290.1
ORgooglechromeMatch24.0.1290.2
ORgooglechromeMatch24.0.1291.0
ORgooglechromeMatch24.0.1291.1
ORgooglechromeMatch24.0.1292.0
ORgooglechromeMatch24.0.1292.1
ORgooglechromeMatch24.0.1293.0
ORgooglechromeMatch24.0.1294.0
ORgooglechromeMatch24.0.1295.0
ORgooglechromeMatch24.0.1296.0
ORgooglechromeMatch24.0.1296.1
ORgooglechromeMatch24.0.1297.0
ORgooglechromeMatch24.0.1298.0
ORgooglechromeMatch24.0.1298.1
ORgooglechromeMatch24.0.1299.0
ORgooglechromeMatch24.0.1300.0
ORgooglechromeMatch24.0.1301.0
ORgooglechromeMatch24.0.1301.1
ORgooglechromeMatch24.0.1301.2
ORgooglechromeMatch24.0.1302.0
ORgooglechromeMatch24.0.1303.0
ORgooglechromeMatch24.0.1304.0
ORgooglechromeMatch24.0.1304.1
ORgooglechromeMatch24.0.1305.0
ORgooglechromeMatch24.0.1305.1
ORgooglechromeMatch24.0.1305.2
ORgooglechromeMatch24.0.1305.3
ORgooglechromeMatch24.0.1305.4
ORgooglechromeMatch24.0.1306.0
ORgooglechromeMatch24.0.1306.1
ORgooglechromeMatch24.0.1307.0
ORgooglechromeMatch24.0.1307.1
ORgooglechromeMatch24.0.1308.0
ORgooglechromeMatch24.0.1309.0
ORgooglechromeMatch24.0.1310.0
ORgooglechromeMatch24.0.1311.0
ORgooglechromeMatch24.0.1311.1
ORgooglechromeMatch24.0.1312.0
ORgooglechromeMatch24.0.1312.1
ORgooglechromeMatch24.0.1312.2
ORgooglechromeMatch24.0.1312.3
ORgooglechromeMatch24.0.1312.4
ORgooglechromeMatch24.0.1312.5
ORgooglechromeMatch24.0.1312.6
ORgooglechromeMatch24.0.1312.7
ORgooglechromeMatch24.0.1312.8
ORgooglechromeMatch24.0.1312.9
ORgooglechromeMatch24.0.1312.10
ORgooglechromeMatch24.0.1312.11
ORgooglechromeMatch24.0.1312.12
ORgooglechromeMatch24.0.1312.13
ORgooglechromeMatch24.0.1312.14
ORgooglechromeMatch24.0.1312.15
ORgooglechromeMatch24.0.1312.16
ORgooglechromeMatch24.0.1312.17
ORgooglechromeMatch24.0.1312.18
ORgooglechromeMatch24.0.1312.19
ORgooglechromeMatch24.0.1312.20
ORgooglechromeMatch24.0.1312.21
ORgooglechromeMatch24.0.1312.22
ORgooglechromeMatch24.0.1312.23
ORgooglechromeMatch24.0.1312.24
ORgooglechromeMatch24.0.1312.25
ORgooglechromeMatch24.0.1312.26
ORgooglechromeMatch24.0.1312.27
ORgooglechromeMatch24.0.1312.28
ORgooglechromeMatch24.0.1312.29
ORgooglechromeMatch24.0.1312.30
ORgooglechromeMatch24.0.1312.31
ORgooglechromeMatch24.0.1312.32
ORgooglechromeMatch24.0.1312.33
ORgooglechromeMatch24.0.1312.34
ORgooglechromeMatch24.0.1312.35
ORgooglechromeMatch24.0.1312.36
ORgooglechromeMatch24.0.1312.37
ORgooglechromeMatch24.0.1312.38
ORgooglechromeMatch24.0.1312.39
ORgooglechromeMatch24.0.1312.40
ORgooglechromeMatch24.0.1312.41
ORgooglechromeMatch24.0.1312.42
ORgooglechromeMatch24.0.1312.43
ORgooglechromeMatch24.0.1312.44
ORgooglechromeMatch24.0.1312.45
ORgooglechromeMatch24.0.1312.46
ORgooglechromeMatch24.0.1312.47
ORgooglechromeMatch24.0.1312.48
ORgooglechromeMatch24.0.1312.49
ORgooglechromeMatch24.0.1312.50
ORgooglechromeMatch24.0.1312.51
ORgooglechromeMatch24.0.1312.52
ORgooglechromeMatch24.0.1312.53
ORgooglechromeMatch24.0.1312.54
ORgooglechromeMatch24.0.1312.55
applemac_os_x
References
googlechromereleases.blogspot.com/2013/01/stable-channel-update_22.html
src.chromium.org/viewvc/chrome/trunk/src/content/renderer/media/webrtc_audio_renderer.cc?r1=175323&r2=175322&pathrev=175323
src.chromium.org/viewvc/chrome?view=rev&revision=175323
code.google.com/p/chromium/issues/detail?id=166523
codereview.chromium.org/11773017
Related
nvd
nvd
CVE-2013-0843
2013-01-24 21:55:05
cvelist
cvelist
CVE-2013-0843
2022-10-03 16:15:04
debiancve
debiancve
CVE-2013-0843
2013-01-24 21:55:00
ubuntucve
ubuntucve
CVE-2013-0843
2013-01-24 00:00:00
prion
prion
Memory corruption
2013-01-24 21:55:00
nessus
nessus
Google Chrome < 24.0.1312.56 Multiple Vulnerabilities
2013-01-25 00:00:00
Google Chrome < 24.0.1312.56 Multiple Vulnerabilities
2013-01-25 00:00:00
openvas
openvas
Google Chrome Multiple Vulnerabilities-02 Feb2013 (MAC OS X)
2013-02-01 00:00:00
Google Chrome Multiple Vulnerabilities-02 (Feb 2013) - Mac OS X
2013-02-01 00:00:00
chrome
chrome
Stable Channel Update
2013-01-22 00:00:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
7.6 High
AI Score
Confidence
High
0.005 Low
EPSS
Percentile
75.3%
Related for CVE-2013-0843