CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
EPSS
Percentile
82.9%
The PDF functionality in Google Chrome before 22.0.1229.79 allows remote
attackers to cause a denial of service or possibly have unspecified other
impact via vectors that trigger out-of-bounds write operations.
Author | Note |
---|---|
seth-arnold | Debian triage notes no PDF capability in chromium-browser; confirmed via chrome://plugins that no PDF plugin exists, could not load multiple PDFs via http or local file on 12.04 LTS. |
googlechromereleases.blogspot.com/2012/09/stable-channel-update_25.html
code.google.com/p/chromium/issues/detail?id=145029
code.google.com/p/chromium/issues/detail?id=145157
code.google.com/p/chromium/issues/detail?id=146460
launchpad.net/bugs/cve/CVE-2012-2895
nvd.nist.gov/vuln/detail/CVE-2012-2895
security-tracker.debian.org/tracker/CVE-2012-2895
www.cve.org/CVERecord?id=CVE-2012-2895