Lucene search

[email protected]NVD:CVE-2013-0843

HistoryJan 24, 2013 - 9:55 p.m.

CVE-2013-0843

2013-01-2421:55:05

CWE-119

[email protected]

web.nvd.nist.gov

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.5 High

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

75.2%

JSON

content/renderer/media/webrtc_audio_renderer.cc in Google Chrome before 24.0.1312.56 on Mac OS X does not use an appropriate buffer size for the 96 kHz sampling rate, which allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via a web site that provides WebRTC audio.

Affected configurations

NVD

Node

googlechromeMatch24.0.1272.0

googlechromeMatch24.0.1272.1

googlechromeMatch24.0.1273.0

googlechromeMatch24.0.1274.0

googlechromeMatch24.0.1275.0

googlechromeMatch24.0.1276.0

googlechromeMatch24.0.1276.1

googlechromeMatch24.0.1277.0

googlechromeMatch24.0.1278.0

googlechromeMatch24.0.1279.0

googlechromeMatch24.0.1280.0

googlechromeMatch24.0.1281.0

googlechromeMatch24.0.1281.1

googlechromeMatch24.0.1281.2

googlechromeMatch24.0.1281.3

googlechromeMatch24.0.1282.0

googlechromeMatch24.0.1283.0

googlechromeMatch24.0.1284.0

googlechromeMatch24.0.1284.1

googlechromeMatch24.0.1284.2

googlechromeMatch24.0.1285.0

googlechromeMatch24.0.1285.1

googlechromeMatch24.0.1285.2

googlechromeMatch24.0.1286.0

googlechromeMatch24.0.1286.1

googlechromeMatch24.0.1287.0

googlechromeMatch24.0.1287.1

googlechromeMatch24.0.1288.0

googlechromeMatch24.0.1288.1

googlechromeMatch24.0.1289.0

googlechromeMatch24.0.1289.1

googlechromeMatch24.0.1290.0

googlechromeMatch24.0.1290.1

googlechromeMatch24.0.1290.2

googlechromeMatch24.0.1291.0

googlechromeMatch24.0.1291.1

googlechromeMatch24.0.1292.0

googlechromeMatch24.0.1292.1

googlechromeMatch24.0.1293.0

googlechromeMatch24.0.1294.0

googlechromeMatch24.0.1295.0

googlechromeMatch24.0.1296.0

googlechromeMatch24.0.1296.1

googlechromeMatch24.0.1297.0

googlechromeMatch24.0.1298.0

googlechromeMatch24.0.1298.1

googlechromeMatch24.0.1299.0

googlechromeMatch24.0.1300.0

googlechromeMatch24.0.1301.0

googlechromeMatch24.0.1301.1

googlechromeMatch24.0.1301.2

googlechromeMatch24.0.1302.0

googlechromeMatch24.0.1303.0

googlechromeMatch24.0.1304.0

googlechromeMatch24.0.1304.1

googlechromeMatch24.0.1305.0

googlechromeMatch24.0.1305.1

googlechromeMatch24.0.1305.2

googlechromeMatch24.0.1305.3

googlechromeMatch24.0.1305.4

googlechromeMatch24.0.1306.0

googlechromeMatch24.0.1306.1

googlechromeMatch24.0.1307.0

googlechromeMatch24.0.1307.1

googlechromeMatch24.0.1308.0

googlechromeMatch24.0.1309.0

googlechromeMatch24.0.1310.0

googlechromeMatch24.0.1311.0

googlechromeMatch24.0.1311.1

googlechromeMatch24.0.1312.0

googlechromeMatch24.0.1312.1

googlechromeMatch24.0.1312.2

googlechromeMatch24.0.1312.3

googlechromeMatch24.0.1312.4

googlechromeMatch24.0.1312.5

googlechromeMatch24.0.1312.6

googlechromeMatch24.0.1312.7

googlechromeMatch24.0.1312.8

googlechromeMatch24.0.1312.9

googlechromeMatch24.0.1312.10

googlechromeMatch24.0.1312.11

googlechromeMatch24.0.1312.12

googlechromeMatch24.0.1312.13

googlechromeMatch24.0.1312.14

googlechromeMatch24.0.1312.15

googlechromeMatch24.0.1312.16

googlechromeMatch24.0.1312.17

googlechromeMatch24.0.1312.18

googlechromeMatch24.0.1312.19

googlechromeMatch24.0.1312.20

googlechromeMatch24.0.1312.21

googlechromeMatch24.0.1312.22

googlechromeMatch24.0.1312.23

googlechromeMatch24.0.1312.24

googlechromeMatch24.0.1312.25

googlechromeMatch24.0.1312.26

googlechromeMatch24.0.1312.27

googlechromeMatch24.0.1312.28

googlechromeMatch24.0.1312.29

googlechromeMatch24.0.1312.30

googlechromeMatch24.0.1312.31

googlechromeMatch24.0.1312.32

googlechromeMatch24.0.1312.33

googlechromeMatch24.0.1312.34

googlechromeMatch24.0.1312.35

googlechromeMatch24.0.1312.36

googlechromeMatch24.0.1312.37

googlechromeMatch24.0.1312.38

googlechromeMatch24.0.1312.39

googlechromeMatch24.0.1312.40

googlechromeMatch24.0.1312.41

googlechromeMatch24.0.1312.42

googlechromeMatch24.0.1312.43

googlechromeMatch24.0.1312.44

googlechromeMatch24.0.1312.45

googlechromeMatch24.0.1312.46

googlechromeMatch24.0.1312.47

googlechromeMatch24.0.1312.48

googlechromeMatch24.0.1312.49

googlechromeMatch24.0.1312.50

googlechromeMatch24.0.1312.51

googlechromeMatch24.0.1312.52

googlechromeMatch24.0.1312.53

googlechromeMatch24.0.1312.54

googlechromeMatch24.0.1312.55

AND

applemac_os_x

References

googlechromereleases.blogspot.com/2013/01/stable-channel-update_22.html

src.chromium.org/viewvc/chrome/trunk/src/content/renderer/media/webrtc_audio_renderer.cc?r1=175323&r2=175322&pathrev=175323

src.chromium.org/viewvc/chrome?view=rev&revision=175323

code.google.com/p/chromium/issues/detail?id=166523

codereview.chromium.org/11773017

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.5 High

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

75.2%

JSON

Related for NVD:CVE-2013-0843

cvelist1 cve1 ubuntucve1 prion1 debiancve1 openvas2 nessus2 chrome1