[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

248392

 
 

909

 
 

195452

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2012-5112Date: (C)2012-10-11   (M)2023-12-22


Use-after-free vulnerability in the SVG implementation in WebKit, as used in Google Chrome before 22.0.1229.94, allows remote attackers to execute arbitrary code via unspecified vectors.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 10.0
Exploit Score: 10.0
Impact Score: 10.0
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality: COMPLETE
Integrity: COMPLETE
Availability: COMPLETE
  
Reference:
http://archives.neohapsis.com/archives/bugtraq/2012-11/0012.html
http://archives.neohapsis.com/archives/bugtraq/2012-11/0013.html
SECUNIA-50954
OSVDB-86149
APPLE-SA-2012-11-01-1
APPLE-SA-2012-11-01-2
http://blog.chromium.org/2012/10/pwnium-2-results-and-wrap-up_10.html
http://code.google.com/p/chromium/issues/detail?id=154983
http://code.google.com/p/chromium/issues/detail?id=154987
http://googlechromereleases.blogspot.com/2012/10/stable-channel-update_6105.html
http://support.apple.com/kb/HT5567
http://support.apple.com/kb/HT5568
oval:org.mitre.oval:def:15523

CPE    58
cpe:/a:google:chrome:22.0.1229.49
cpe:/a:google:chrome:22.0.1229.48
cpe:/a:google:chrome:22.0.1229.89
cpe:/a:google:chrome:22.0.1229.10
...
CWE    1
CWE-399
OVAL    14
oval:org.secpod.oval:def:7359
oval:org.secpod.oval:def:7355
oval:org.secpod.oval:def:7353
oval:org.secpod.oval:def:7361
...

© SecPod Technologies