Executive Summary
This Alert is flagged as TOP 25 Common Weakness Enumeration from CWE/SANS. For more information, you can read this.
| Summary | |
|---|---|
| Title | Oxide vulnerabilities |
| Informations | |||
|---|---|---|---|
| Name | USN-2298-1 | First vendor Publication | 2014-07-23 |
| Vendor | Ubuntu | Last vendor Modification | 2014-07-23 |
| Severity (Vendor) | N/A | Revision | N/A |
Security-Database Scoring CVSS v3
| Cvss vector : N/A | |||
|---|---|---|---|
| Overall CVSS Score | NA | ||
| Base Score | NA | Environmental Score | NA |
| impact SubScore | NA | Temporal Score | NA |
| Exploitabality Sub Score | NA | ||
| Calculate full CVSS 3.0 Vectors scores | |||
Security-Database Scoring CVSS v2
| Cvss vector : (AV:N/AC:L/Au:N/C:C/I:N/A:N) | |||
|---|---|---|---|
| Cvss Base Score | 7.8 | Attack Range | Network |
| Cvss Impact Score | 6.9 | Attack Complexity | Low |
| Cvss Expoit Score | 10 | Authentication | None Required |
| Calculate full CVSS 2.0 Vectors scores | |||
Detail
| A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 14.04 LTS Summary: Several security issues were fixed in Oxide. Software Description: - oxide-qt: Web browser engine library for Qt Details: A type confusion bug was discovered in V8. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to cause a denial of service via renderer crash, or execute arbitrary code with the privileges of the sandboxed render process. (CVE-2014-1730) A type confusion bug was discovered in Blink. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to cause a denial of service via renderer crash, or execute arbitrary code with the privileges of the sandboxed render process. (CVE-2014-1731) Multiple security issues including memory safety bugs were discovered in Chromium. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service via application crash or execute arbitrary code with the privileges of the user invoking the program. (CVE-2014-1735, CVE-2014-3162) Multiple use-after-free issues were discovered in the WebSockets implementation. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service via application crash or execute arbitrary code with the privileges of the user invoking the program. (CVE-2014-1740) Multiple integer overflows were discovered in CharacterData implementation. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service via renderer crash or execute arbitrary code with the privileges of the sandboxed render process. (CVE-2014-1741) Multiple use-after-free issues were discovered in Blink. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service via renderer crash or execute arbitrary code with the privileges of the sandboxed render process. (CVE-2014-1742, CVE-2014-1743) An integer overflow bug was discovered in Chromium. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to cause a denial of service via application crash or execute arbitrary code with the privileges of the user invoking the program. (CVE-2014-1744) An out-of-bounds read was discovered in Chromium. If a user were tricked in to opening a specially crafter website, an attacker could potentially exploit this to cause a denial of service via application crash. (CVE-2014-1746) It was discovered that Blink allowed scrollbar painting to extend in to the parent frame in some circumstances. An attacker could potentially exploit this to conduct clickjacking attacks via UI redress. (CVE-2014-1748) An integer underflow was discovered in Blink. If a user were tricked in to opening a specially crafter website, an attacker could potentially exploit this to cause a denial of service via renderer crash or execute arbitrary code with the privileges of the sandboxed render process. (CVE-2014-3152) A use-after-free was discovered in Chromium. If a use were tricked in to opening a specially crafted website, an attacker could potentially exploit this to cause a denial of service via renderer crash or execute arbitrary code with the privileges of the sandboxed render process. (CVE-2014-3154) A security issue was discovered in the SPDY implementation. An attacker could potentially exploit this to cause a denial of service via application crash or execute arbitrary code with the privileges of the user invoking the program. (CVE-2014-3155) A heap overflow was discovered in Chromium. If a use were tricked in to opening a specially crafted website, an attacker could potentially exploit this to cause a denial of service via renderer crash or execute arbitrary code with the privileges of the sandboxed render process. (CVE-2014-3157) It was discovered that Blink did not enforce security rules for subresource loading in SVG images. If a user opened a site that embedded a specially crafted image, an attacker could exploit this to log page views. (CVE-2014-3160) It was discovered that the SpeechInput feature in Blink could be activated without consent or any visible indication. If a user were tricked in to opening a specially crafted website, an attacker could exploit this to eavesdrop on the user. (CVE-2014-3803) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 14.04 LTS: In general, a standard system update will make all the necessary changes. References: Package Information: |
Original Source
| Url : http://www.ubuntu.com/usn/USN-2298-1 |
CWE : Common Weakness Enumeration
| % | Id | Name |
|---|---|---|
| 30 % | CWE-399 | Resource Management Errors |
| 30 % | CWE-189 | Numeric Errors (CWE/SANS Top 25) |
| 20 % | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
| 10 % | CWE-264 | Permissions, Privileges, and Access Controls |
| 10 % | CWE-200 | Information Exposure |
OVAL Definitions
| Definition Id: oval:org.mitre.oval:def:23895 | |||
| Oval ID: | oval:org.mitre.oval:def:23895 | ||
| Title: | Vulnerability in Google Chrome before 35.0.1916.114 allows remote attackers to cause a denial of service (out-of-bounds read) via vectors that trigger use of a large buffer | ||
| Description: | The InMemoryUrlProtocol::Read function in media/filters/in_memory_url_protocol.cc in Google Chrome before 35.0.1916.114 relies on an insufficiently large integer data type, which allows remote attackers to cause a denial of service (out-of-bounds read) via vectors that trigger use of a large buffer. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2014-1746 | Version: | 3 |
| Platform(s): | Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows 8.1 Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 | Product(s): | Google Chrome |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:24125 | |||
| Oval ID: | oval:org.mitre.oval:def:24125 | ||
| Title: | Vulnerability in Google Chrome before 35.0.1916.114 allows remote attackers to spoof the UI by extending scrollbar painting into the parent frame | ||
| Description: | The ScrollView::paint function in platform/scroll/ScrollView.cpp in Blink, as used in Google Chrome before 35.0.1916.114, allows remote attackers to spoof the UI by extending scrollbar painting into the parent frame. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2014-1748 | Version: | 3 |
| Platform(s): | Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows 8.1 Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 | Product(s): | Google Chrome |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:24402 | |||
| Oval ID: | oval:org.mitre.oval:def:24402 | ||
| Title: | DSA-2939-1 chromium-browser - security update | ||
| Description: | Several vulnerabilities were discovered in the chromium web browser. | ||
| Family: | unix | Class: | patch |
| Reference(s): | DSA-2939-1 CVE-2014-1743 CVE-2014-1744 CVE-2014-1745 CVE-2014-1746 CVE-2014-1747 CVE-2014-1748 CVE-2014-1749 CVE-2014-3152 | Version: | 3 |
| Platform(s): | Debian GNU/Linux 7.0 Debian GNU/kFreeBSD 7.0 | Product(s): | chromium-browser |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:24525 | |||
| Oval ID: | oval:org.mitre.oval:def:24525 | ||
| Title: | Use-after-free vulnerability in Google Chrome before 35.0.1916.114 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact | ||
| Description: | Use-after-free vulnerability in the StyleElement::removedFromDocument function in core/dom/StyleElement.cpp in Blink, as used in Google Chrome before 35.0.1916.114, allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via crafted JavaScript code that triggers tree mutation. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2014-1743 | Version: | 3 |
| Platform(s): | Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows 8.1 Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 | Product(s): | Google Chrome |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:24578 | |||
| Oval ID: | oval:org.mitre.oval:def:24578 | ||
| Title: | Use-after-free vulnerability in Google Chrome before 34.0.1847.137 on Windows (CVE-2014-1742) | ||
| Description: | Use-after-free vulnerability in the FrameSelection::updateAppearance function in core/editing/FrameSelection.cpp in Blink, as used in Google Chrome before 34.0.1847.137, allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging improper RenderObject handling. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2014-1742 | Version: | 3 |
| Platform(s): | Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows 8.1 Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 | Product(s): | Google Chrome |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:24583 | |||
| Oval ID: | oval:org.mitre.oval:def:24583 | ||
| Title: | Integer overflow vulnerability in Google Chrome before 35.0.1916.114 allows remote attackers to cause a denial of service or possibly have unspecified other impact | ||
| Description: | Integer overflow in the AudioInputRendererHost::OnCreateStream function in content/browser/renderer_host/media/audio_input_renderer_host.cc in Google Chrome before 35.0.1916.114 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger a large shared-memory allocation. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2014-1744 | Version: | 3 |
| Platform(s): | Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows 8.1 Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 | Product(s): | Google Chrome |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:24693 | |||
| Oval ID: | oval:org.mitre.oval:def:24693 | ||
| Title: | Use-after-free vulnerability in Google Chrome before 34.0.1847.137 on Windows (CVE-2014-1740) | ||
| Description: | Multiple use-after-free vulnerabilities in net/websockets/websocket_job.cc in the WebSockets implementation in Google Chrome before 34.0.1847.137 allow remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to WebSocketJob deletion. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2014-1740 | Version: | 3 |
| Platform(s): | Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows 8.1 Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 | Product(s): | Google Chrome |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:24715 | |||
| Oval ID: | oval:org.mitre.oval:def:24715 | ||
| Title: | Multiple integer overflow vulnerability in Google Chrome before 34.0.1847.137 on Windows | ||
| Description: | Multiple integer overflows in the replace-data functionality in the CharacterData interface implementation in core/dom/CharacterData.cpp in Blink, as used in Google Chrome before 34.0.1847.137, allow remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to ranges. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2014-1741 | Version: | 3 |
| Platform(s): | Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows 8.1 Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 | Product(s): | Google Chrome |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:24782 | |||
| Oval ID: | oval:org.mitre.oval:def:24782 | ||
| Title: | Vulnerability in Google Chrome before 36.0.1985.125, allow attackers to cause a denial of service or possibly have other impact | ||
| Description: | Multiple unspecified vulnerabilities in Google Chrome before 36.0.1985.125 allow attackers to cause a denial of service or possibly have other impact via unknown vectors. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2014-3162 | Version: | 4 |
| Platform(s): | Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows 8.1 Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 | Product(s): | Google Chrome |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:24831 | |||
| Oval ID: | oval:org.mitre.oval:def:24831 | ||
| Title: | Heap-based buffer overflow vulnerability in Google Chrome before 35.0.1916.153, allows remote attackers to cause a denial of service or possibly have unspecified other impact | ||
| Description: | Heap-based buffer overflow in the FFmpegVideoDecoder::GetVideoBuffer function in media/filters/ffmpeg_video_decoder.cc in Google Chrome before 35.0.1916.153 allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging VideoFrame data structures that are too small for proper interaction with an underlying FFmpeg library. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2014-3157 | Version: | 3 |
| Platform(s): | Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows 8.1 Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 | Product(s): | Google Chrome |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:24855 | |||
| Oval ID: | oval:org.mitre.oval:def:24855 | ||
| Title: | Vulnerability in Google Chrome before 36.0.1985.125, allows remote attackers to bypass the Same Origin Policy via a crafted file | ||
| Description: | The ResourceFetcher::canRequest function in core/fetch/ResourceFetcher.cpp in Blink, as used in Google Chrome before 36.0.1985.125, does not properly restrict subresource requests associated with SVG files, which allows remote attackers to bypass the Same Origin Policy via a crafted file. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2014-3160 | Version: | 4 |
| Platform(s): | Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows 8.1 Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 | Product(s): | Google Chrome |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:25017 | |||
| Oval ID: | oval:org.mitre.oval:def:25017 | ||
| Title: | Vulnerability in Google Chrome before 35.0.1916.153, allows remote attackers to cause a denial of service (out-of-bounds read) | ||
| Description: | net/spdy/spdy_write_queue.cc in the SPDY implementation in Google Chrome before 35.0.1916.153 allows remote attackers to cause a denial of service (out-of-bounds read) by leveraging incorrect queue maintenance. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2014-3155 | Version: | 3 |
| Platform(s): | Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows 8.1 Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 | Product(s): | Google Chrome |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:25028 | |||
| Oval ID: | oval:org.mitre.oval:def:25028 | ||
| Title: | Use-after-free vulnerability in Google Chrome before 35.0.1916.153, allows remote attackers to cause a denial of service or possibly have unspecified other impact | ||
| Description: | Use-after-free vulnerability in the ChildThread::Shutdown function in content/child/child_thread.cc in the filesystem API in Google Chrome before 35.0.1916.153 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to a Blink shutdown. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2014-3154 | Version: | 3 |
| Platform(s): | Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows 8.1 Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 | Product(s): | Google Chrome |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:25078 | |||
| Oval ID: | oval:org.mitre.oval:def:25078 | ||
| Title: | DSA-2959-1 chromium-browser - security update | ||
| Description: | Several vulnerabilities have been discovered in the chromium web browser. | ||
| Family: | unix | Class: | patch |
| Reference(s): | DSA-2959-1 CVE-2014-3154 CVE-2014-3155 CVE-2014-3156 CVE-2014-3157 | Version: | 3 |
| Platform(s): | Debian GNU/Linux 7.0 Debian GNU/kFreeBSD 7.0 | Product(s): | chromium-browser |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:25999 | |||
| Oval ID: | oval:org.mitre.oval:def:25999 | ||
| Title: | USN-2298-1 -- oxide-qt vulnerabilities | ||
| Description: | Several security issues were fixed in Oxide. | ||
| Family: | unix | Class: | patch |
| Reference(s): | USN-2298-1 CVE-2014-1730 CVE-2014-1731 CVE-2014-1735 CVE-2014-3162 CVE-2014-1740 CVE-2014-1741 CVE-2014-1742 CVE-2014-1743 CVE-2014-1744 CVE-2014-1746 CVE-2014-1748 CVE-2014-3152 CVE-2014-3154 CVE-2014-3155 CVE-2014-3157 CVE-2014-3160 CVE-2014-3803 | Version: | 3 |
| Platform(s): | Ubuntu 14.04 | Product(s): | oxide-qt |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:26403 | |||
| Oval ID: | oval:org.mitre.oval:def:26403 | ||
| Title: | Allows attackers to cause a denial of service or possibly have other impact | ||
| Description: | Multiple unspecified vulnerabilities in Google V8 before 3.24.35.33, as used in Google Chrome before 34.0.1847.131 on Windows and OS X and before 34.0.1847.132 on Linux, allow attackers to cause a denial of service or possibly have other impact via unknown vectors. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2014-1735 | Version: | 3 |
| Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows 8.1 Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 | Product(s): | Google Chrome |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:26679 | |||
| Oval ID: | oval:org.mitre.oval:def:26679 | ||
| Title: | Allows remote attackers to cause a denial of service or possibly have unspecified other impact | ||
| Description: | Integer underflow in the LCodeGen::PrepareKeyedOperand function in arm/lithium-codegen-arm.cc in Google V8 before 3.25.28.16, as used in Google Chrome before 35.0.1916.114, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger a negative key value. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2014-3152 | Version: | 3 |
| Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows 8.1 Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 | Product(s): | Google Chrome |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:26691 | |||
| Oval ID: | oval:org.mitre.oval:def:26691 | ||
| Title: | Allows remote attackers to enable microphone access and obtain speech-recognition text without indication | ||
| Description: | The SpeechInput feature in Blink, as used in Google Chrome before 35.0.1916.114, allows remote attackers to enable microphone access and obtain speech-recognition text without indication via an INPUT element with a -x-webkit-speech attribute. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2014-3803 | Version: | 3 |
| Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows 8.1 Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 | Product(s): | Google Chrome |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:26738 | |||
| Oval ID: | oval:org.mitre.oval:def:26738 | ||
| Title: | Allows remote attackers to cause a denial of service or possibly have unspecified other impact | ||
| Description: | core/html/HTMLSelectElement.cpp in the DOM implementation in Blink, as used in Google Chrome before 34.0.1847.131 on Windows and OS X and before 34.0.1847.132 on Linux, does not properly check renderer state upon a focus event, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that leverage "type confusion" for SELECT elements. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2014-1731 | Version: | 3 |
| Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows 8.1 Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 | Product(s): | Google Chrome |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:26790 | |||
| Oval ID: | oval:org.mitre.oval:def:26790 | ||
| Title: | Allows remote attackers to bypass intended access restrictions by leveraging "type confusion" and reading property values | ||
| Description: | Google V8, as used in Google Chrome before 34.0.1847.131 on Windows and OS X and before 34.0.1847.132 on Linux, does not properly store internationalization metadata, which allows remote attackers to bypass intended access restrictions by leveraging "type confusion" and reading property values, related to i18n.js and runtime.cc. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2014-1730 | Version: | 3 |
| Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows 8.1 Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 | Product(s): | Google Chrome |
| Definition Synopsis: | |||
CPE : Common Platform Enumeration
Information Assurance Vulnerability Management (IAVM)
| Date | Description |
|---|---|
| 2014-07-24 | IAVM : 2014-B-0100 - Multiple Security Vulnerabilities in Google Chrome Severity : Category I - VMSKEY : V0053311 |
| 2014-06-12 | IAVM : 2014-B-0071 - Multiple Vulnerabilities in Google Chrome Severity : Category I - VMSKEY : V0052483 |
| 2014-05-22 | IAVM : 2014-B-0060 - Multiple Vulnerabilities in Google Chrome Severity : Category I - VMSKEY : V0050897 |
| 2014-05-15 | IAVM : 2014-B-0056 - Multiple Vulnerabilities in Google Chrome Severity : Category I - VMSKEY : V0050433 |
| 2014-05-01 | IAVM : 2014-B-0049 - Multiple Vulnerabilities in Google Chrome Severity : Category I - VMSKEY : V0050017 |
Nessus® Vulnerability Scanner
| Date | Description |
|---|---|
| 2016-04-01 | Name : The remote openSUSE host is missing a security update. File : openSUSE-2016-412.nasl - Type : ACT_GATHER_INFO |
| 2016-04-01 | Name : The remote Fedora host is missing a security update. File : fedora_2016-9ec1850fff.nasl - Type : ACT_GATHER_INFO |
| 2016-03-28 | Name : The remote Fedora host is missing a security update. File : fedora_2016-fde7ffcb77.nasl - Type : ACT_GATHER_INFO |
| 2016-03-28 | Name : The remote Fedora host is missing a security update. File : fedora_2016-a4fcb02d6b.nasl - Type : ACT_GATHER_INFO |
| 2016-03-23 | Name : The remote Fedora host is missing a security update. File : fedora_2016-5d6d75dbea.nasl - Type : ACT_GATHER_INFO |
| 2016-03-22 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-2937-1.nasl - Type : ACT_GATHER_INFO |
| 2016-03-21 | Name : The remote Fedora host is missing a security update. File : fedora_2016-1a7f7ffb58.nasl - Type : ACT_GATHER_INFO |
| 2016-02-05 | Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_1091d2d1cb2e11e5b14bbcaec565249c.nasl - Type : ACT_GATHER_INFO |
| 2015-05-11 | Name : The remote Fedora host is missing a security update. File : fedora_2015-6890.nasl - Type : ACT_GATHER_INFO |
| 2015-05-11 | Name : The remote Fedora host is missing a security update. File : fedora_2015-6845.nasl - Type : ACT_GATHER_INFO |
| 2015-05-11 | Name : The remote Fedora host is missing a security update. File : fedora_2015-6908.nasl - Type : ACT_GATHER_INFO |
| 2014-12-16 | Name : The remote host contains a web browser that is affected by multiple vulnerabi... File : macosx_Safari8_0_2.nasl - Type : ACT_GATHER_INFO |
| 2014-10-21 | Name : The remote host contains an application that is affected by multiple vulnerab... File : itunes_12_0_1_banner.nasl - Type : ACT_GATHER_INFO |
| 2014-10-21 | Name : The remote host contains an application that is affected by multiple vulnerab... File : itunes_12_0_1.nasl - Type : ACT_GATHER_INFO |
| 2014-09-30 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-3039.nasl - Type : ACT_GATHER_INFO |
| 2014-08-30 | Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201408-16.nasl - Type : ACT_GATHER_INFO |
| 2014-08-12 | Name : The remote openSUSE host is missing a security update. File : openSUSE-2014-483.nasl - Type : ACT_GATHER_INFO |
| 2014-07-24 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-2298-1.nasl - Type : ACT_GATHER_INFO |
| 2014-07-18 | Name : The remote FreeBSD host is missing a security-related update. File : freebsd_pkg_3718833e0d2711e489db000c6e25e3e9.nasl - Type : ACT_GATHER_INFO |
| 2014-07-17 | Name : The remote host contains a web browser that is affected by multiple vulnerabi... File : google_chrome_36_0_1985_125.nasl - Type : ACT_GATHER_INFO |
| 2014-07-17 | Name : The remote Mac OS X host contains a web browser that is affected by multiple ... File : macosx_google_chrome_36_0_1985_125.nasl - Type : ACT_GATHER_INFO |
| 2014-06-16 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-2959.nasl - Type : ACT_GATHER_INFO |
| 2014-06-13 | Name : The remote openSUSE host is missing a security update. File : openSUSE-2014-420.nasl - Type : ACT_GATHER_INFO |
| 2014-06-13 | Name : The remote openSUSE host is missing a security update. File : openSUSE-2014-371.nasl - Type : ACT_GATHER_INFO |
| 2014-06-13 | Name : The remote openSUSE host is missing a security update. File : openSUSE-2014-370.nasl - Type : ACT_GATHER_INFO |
| 2014-06-12 | Name : The remote FreeBSD host is missing a security-related update. File : freebsd_pkg_0b0fb9b0f0fb11e39bcd000c6e25e3e9.nasl - Type : ACT_GATHER_INFO |
| 2014-06-11 | Name : The remote Mac OS X host contains a web browser that is affected by multiple ... File : macosx_google_chrome_35_0_1916_153.nasl - Type : ACT_GATHER_INFO |
| 2014-06-11 | Name : The remote host contains a web browser that is affected by multiple vulnerabi... File : google_chrome_35_0_1916_153.nasl - Type : ACT_GATHER_INFO |
| 2014-06-06 | Name : The remote host contains a web browser that is affected by multiple vulnerabi... File : opera_2200.nasl - Type : ACT_GATHER_INFO |
| 2014-06-02 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-2939.nasl - Type : ACT_GATHER_INFO |
| 2014-05-22 | Name : The remote host contains a web browser that is affected by multiple vulnerabi... File : macosx_Safari7_0_4.nasl - Type : ACT_GATHER_INFO |
| 2014-05-21 | Name : The remote Mac OS X host contains a web browser that is affected by multiple ... File : macosx_google_chrome_35_0_1916_114.nasl - Type : ACT_GATHER_INFO |
| 2014-05-21 | Name : The remote host contains a web browser that is affected by multiple vulnerabi... File : google_chrome_35_0_1916_114.nasl - Type : ACT_GATHER_INFO |
| 2014-05-21 | Name : The remote FreeBSD host is missing a security-related update. File : freebsd_pkg_64f3872be05d11e39dd400262d5ed8ee.nasl - Type : ACT_GATHER_INFO |
| 2014-05-19 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-2930.nasl - Type : ACT_GATHER_INFO |
| 2014-05-15 | Name : The remote FreeBSD host is missing a security-related update. File : freebsd_pkg_cdf450fcdb5211e3a9fc00262d5ed8ee.nasl - Type : ACT_GATHER_INFO |
| 2014-05-14 | Name : The remote Mac OS X host contains a web browser that is affected by multiple ... File : macosx_google_chrome_34_0_1847_137.nasl - Type : ACT_GATHER_INFO |
| 2014-05-14 | Name : The remote host contains a web browser that is affected by multiple vulnerabi... File : google_chrome_34_0_1847_137.nasl - Type : ACT_GATHER_INFO |
| 2014-05-05 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-2920.nasl - Type : ACT_GATHER_INFO |
| 2014-05-01 | Name : The remote FreeBSD host is missing a security-related update. File : freebsd_pkg_7cf25a0cd03111e3947b00262d5ed8ee.nasl - Type : ACT_GATHER_INFO |
| 2014-04-25 | Name : The remote host contains a web browser that is affected by multiple vulnerabi... File : google_chrome_34_0_1847_131.nasl - Type : ACT_GATHER_INFO |
| 2014-04-25 | Name : The remote Mac OS X host contains a web browser that is affected by multiple ... File : macosx_google_chrome_34_0_1847_131.nasl - Type : ACT_GATHER_INFO |
Alert History
| Date | Informations |
|---|---|
| 2014-07-25 13:22:00 |
|
| 2014-07-24 00:21:43 |
|
