Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2013-2866HistoryJun 19, 2013 - 8:55 p.m.
CVE-2013-2866
2013-06-1920:55:00
Debian Security Bug Tracker
security-tracker.debian.org
9
0.005 Low
EPSS
Percentile
76.3%
The Flash plug-in in Google Chrome before 27.0.1453.116, as used on Google Chrome OS before 27.0.1453.116 and separately, does not properly determine whether a user wishes to permit camera or microphone access by a Flash application, which allows remote attackers to obtain sensitive information from a machine’s physical environment via a clickjacking attack, as demonstrated by an attack using a crafted Cascading Style Sheets (CSS) opacity property.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 9 | all | chromium-browser | < 70.0.3538.110-1~deb9u1 | chromium-browser_70.0.3538.110-1~deb9u1_all.deb |
Related
cvelist
cvelist
CVE-2013-2866
2013-06-19 20:00:00
cve
cve
CVE-2013-2866
2013-06-19 20:55:01
prion
prion
Design/Logic Flaw
2013-06-19 20:55:00
chrome
chrome
Stable Channel Update
2013-06-18 00:00:00
Stable Channel Update for Chrome OS
2013-06-18 00:00:00
ubuntucve
ubuntucve
CVE-2013-2866
2013-06-19 00:00:00
nvd
nvd
CVE-2013-2866
2013-06-19 20:55:01
seebug
seebug
Google Chrome Flash插件点击劫持漏洞(CVE-2013-2866)
2013-06-26 00:00:00
openvas
openvas
Google Chrome Clickjacking Vulnerability June13 (Windows)
2013-06-24 00:00:00
Google Chrome Clickjacking Vulnerability (Jun 2013) - Mac OS X
2013-06-24 00:00:00
Google Chrome Clickjacking Vulnerability June13 (MAC OS X)
2013-06-24 00:00:00
nessus
nessus
Google Chrome < 27.0.1453.116 Flash Click-Jacking
2013-06-19 00:00:00