Lucene search

K
cve[email protected]CVE-2013-6631
HistoryNov 19, 2013 - 4:50 a.m.

CVE-2013-6631

2013-11-1904:50:56
web.nvd.nist.gov
46
cve-2013-6631
vulnerability
channel::sendrtcppacket
libjingle
webrtc
google chrome
denial of service
heap memory corruption
nvd

7 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.013 Low

EPSS

Percentile

86.2%

Use-after-free vulnerability in the Channel::SendRTCPPacket function in voice_engine/channel.cc in libjingle in WebRTC, as used in Google Chrome before 31.0.1650.48 and other products, allows remote attackers to cause a denial of service (heap memory corruption) or possibly have unspecified other impact via vectors that trigger the absence of certain statistics initialization, leading to the skipping of a required DeRegisterExternalTransport call.

Affected configurations

NVD
Node
googlechromeRange31.0.1650.47
OR
googlechromeMatch31.0.1650.0
OR
googlechromeMatch31.0.1650.2
OR
googlechromeMatch31.0.1650.3
OR
googlechromeMatch31.0.1650.4
OR
googlechromeMatch31.0.1650.5
OR
googlechromeMatch31.0.1650.6
OR
googlechromeMatch31.0.1650.7
OR
googlechromeMatch31.0.1650.8
OR
googlechromeMatch31.0.1650.9
OR
googlechromeMatch31.0.1650.10
OR
googlechromeMatch31.0.1650.11
OR
googlechromeMatch31.0.1650.12
OR
googlechromeMatch31.0.1650.13
OR
googlechromeMatch31.0.1650.14
OR
googlechromeMatch31.0.1650.15
OR
googlechromeMatch31.0.1650.16
OR
googlechromeMatch31.0.1650.17
OR
googlechromeMatch31.0.1650.18
OR
googlechromeMatch31.0.1650.19
OR
googlechromeMatch31.0.1650.20
OR
googlechromeMatch31.0.1650.22
OR
googlechromeMatch31.0.1650.23
OR
googlechromeMatch31.0.1650.25
OR
googlechromeMatch31.0.1650.26
OR
googlechromeMatch31.0.1650.27
OR
googlechromeMatch31.0.1650.28
OR
googlechromeMatch31.0.1650.29
OR
googlechromeMatch31.0.1650.30
OR
googlechromeMatch31.0.1650.31
OR
googlechromeMatch31.0.1650.32
OR
googlechromeMatch31.0.1650.33
OR
googlechromeMatch31.0.1650.34
OR
googlechromeMatch31.0.1650.35
OR
googlechromeMatch31.0.1650.36
OR
googlechromeMatch31.0.1650.37
OR
googlechromeMatch31.0.1650.38
OR
googlechromeMatch31.0.1650.39
OR
googlechromeMatch31.0.1650.41
OR
googlechromeMatch31.0.1650.42
OR
googlechromeMatch31.0.1650.43
OR
googlechromeMatch31.0.1650.44
OR
googlechromeMatch31.0.1650.45
OR
googlechromeMatch31.0.1650.46

7 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.013 Low

EPSS

Percentile

86.2%