ID CVE-2013-2854
Summary Google Chrome before 27.0.1453.110 on Windows provides an incorrect handle to a renderer process in unspecified circumstances, which allows remote attackers to cause a denial of service or possibly have other impact via unknown vectors.
References
Vulnerable Configurations
  • Google Chrome 27.0.1453.94
    cpe:2.3:a:google:chrome:27.0.1453.94
  • Google Chrome 27.0.1453.102
    cpe:2.3:a:google:chrome:27.0.1453.102
  • Google Chrome 27.0.1453.103
    cpe:2.3:a:google:chrome:27.0.1453.103
  • Google Chrome 27.0.1453.104
    cpe:2.3:a:google:chrome:27.0.1453.104
  • Google Chrome 27.0.1453.105
    cpe:2.3:a:google:chrome:27.0.1453.105
  • Google Chrome 27.0.1453.106
    cpe:2.3:a:google:chrome:27.0.1453.106
  • Google Chrome 27.0.1453.107
    cpe:2.3:a:google:chrome:27.0.1453.107
  • Google Chrome 27.0.1453.108
    cpe:2.3:a:google:chrome:27.0.1453.108
  • Google Chrome 27.0.1453.109
    cpe:2.3:a:google:chrome:27.0.1453.109
  • Google Chrome 27.0.1453.63
    cpe:2.3:a:google:chrome:27.0.1453.63
  • Google Chrome 27.0.1453.64
    cpe:2.3:a:google:chrome:27.0.1453.64
  • Google Chrome 27.0.1453.65
    cpe:2.3:a:google:chrome:27.0.1453.65
  • Google Chrome 27.0.1453.66
    cpe:2.3:a:google:chrome:27.0.1453.66
  • Google Chrome 27.0.1453.67
    cpe:2.3:a:google:chrome:27.0.1453.67
  • Google Chrome 27.0.1453.68
    cpe:2.3:a:google:chrome:27.0.1453.68
  • Google Chrome 27.0.1453.69
    cpe:2.3:a:google:chrome:27.0.1453.69
  • Google Chrome 27.0.1453.70
    cpe:2.3:a:google:chrome:27.0.1453.70
  • Google Chrome 27.0.1453.55
    cpe:2.3:a:google:chrome:27.0.1453.55
  • Google Chrome 27.0.1453.56
    cpe:2.3:a:google:chrome:27.0.1453.56
  • Google Chrome 27.0.1453.57
    cpe:2.3:a:google:chrome:27.0.1453.57
  • Google Chrome 27.0.1453.58
    cpe:2.3:a:google:chrome:27.0.1453.58
  • Google Chrome 27.0.1453.59
    cpe:2.3:a:google:chrome:27.0.1453.59
  • Google Chrome 27.0.1453.60
    cpe:2.3:a:google:chrome:27.0.1453.60
  • Google Chrome 27.0.1453.61
    cpe:2.3:a:google:chrome:27.0.1453.61
  • Google Chrome 27.0.1453.62
    cpe:2.3:a:google:chrome:27.0.1453.62
  • Google Chrome 27.0.1453.80
    cpe:2.3:a:google:chrome:27.0.1453.80
  • Google Chrome 27.0.1453.79
    cpe:2.3:a:google:chrome:27.0.1453.79
  • Google Chrome 27.0.1453.82
    cpe:2.3:a:google:chrome:27.0.1453.82
  • Google Chrome 27.0.1453.81
    cpe:2.3:a:google:chrome:27.0.1453.81
  • Google Chrome 27.0.1453.84
    cpe:2.3:a:google:chrome:27.0.1453.84
  • Google Chrome 27.0.1453.83
    cpe:2.3:a:google:chrome:27.0.1453.83
  • Google Chrome 27.0.1453.86
    cpe:2.3:a:google:chrome:27.0.1453.86
  • Google Chrome 27.0.1453.85
    cpe:2.3:a:google:chrome:27.0.1453.85
  • Google Chrome 27.0.1453.72
    cpe:2.3:a:google:chrome:27.0.1453.72
  • Google Chrome 27.0.1453.71
    cpe:2.3:a:google:chrome:27.0.1453.71
  • Google Chrome 27.0.1453.74
    cpe:2.3:a:google:chrome:27.0.1453.74
  • Google Chrome 27.0.1453.73
    cpe:2.3:a:google:chrome:27.0.1453.73
  • Google Chrome 27.0.1453.76
    cpe:2.3:a:google:chrome:27.0.1453.76
  • Google Chrome 27.0.1453.75
    cpe:2.3:a:google:chrome:27.0.1453.75
  • Google Chrome 27.0.1453.78
    cpe:2.3:a:google:chrome:27.0.1453.78
  • Google Chrome 27.0.1453.77
    cpe:2.3:a:google:chrome:27.0.1453.77
  • Google Chrome 27.0.1453.89
    cpe:2.3:a:google:chrome:27.0.1453.89
  • Google Chrome 27.0.1453.90
    cpe:2.3:a:google:chrome:27.0.1453.90
  • Google Chrome 27.0.1453.87
    cpe:2.3:a:google:chrome:27.0.1453.87
  • Google Chrome 27.0.1453.88
    cpe:2.3:a:google:chrome:27.0.1453.88
  • Google Chrome 27.0.1453.91
    cpe:2.3:a:google:chrome:27.0.1453.91
  • Google Chrome 27.0.1453.93
    cpe:2.3:a:google:chrome:27.0.1453.93
  • Google Chrome 27.0.1453.10
    cpe:2.3:a:google:chrome:27.0.1453.10
  • Google Chrome 27.0.1453.9
    cpe:2.3:a:google:chrome:27.0.1453.9
  • Google Chrome 27.0.1453.41
    cpe:2.3:a:google:chrome:27.0.1453.41
  • Google Chrome 27.0.1453.42
    cpe:2.3:a:google:chrome:27.0.1453.42
  • Google Chrome 27.0.1453.43
    cpe:2.3:a:google:chrome:27.0.1453.43
  • Google Chrome 27.0.1453.44
    cpe:2.3:a:google:chrome:27.0.1453.44
  • Google Chrome 27.0.1453.37
    cpe:2.3:a:google:chrome:27.0.1453.37
  • Google Chrome 27.0.1453.38
    cpe:2.3:a:google:chrome:27.0.1453.38
  • Google Chrome 27.0.1453.39
    cpe:2.3:a:google:chrome:27.0.1453.39
  • Google Chrome 27.0.1453.40
    cpe:2.3:a:google:chrome:27.0.1453.40
  • Google Chrome 27.0.1453.50
    cpe:2.3:a:google:chrome:27.0.1453.50
  • Google Chrome 27.0.1453.51
    cpe:2.3:a:google:chrome:27.0.1453.51
  • Google Chrome 27.0.1453.52
    cpe:2.3:a:google:chrome:27.0.1453.52
  • Google Chrome 27.0.1453.54
    cpe:2.3:a:google:chrome:27.0.1453.54
  • Google Chrome 27.0.1453.45
    cpe:2.3:a:google:chrome:27.0.1453.45
  • Google Chrome 27.0.1453.46
    cpe:2.3:a:google:chrome:27.0.1453.46
  • Google Chrome 27.0.1453.47
    cpe:2.3:a:google:chrome:27.0.1453.47
  • Google Chrome 27.0.1453.49
    cpe:2.3:a:google:chrome:27.0.1453.49
  • Google Chrome 27.0.1453.3
    cpe:2.3:a:google:chrome:27.0.1453.3
  • Google Chrome 27.0.1453.4
    cpe:2.3:a:google:chrome:27.0.1453.4
  • Google Chrome 27.0.1453.1
    cpe:2.3:a:google:chrome:27.0.1453.1
  • Google Chrome 27.0.1453.2
    cpe:2.3:a:google:chrome:27.0.1453.2
  • Google Chrome 27.0.1453.7
    cpe:2.3:a:google:chrome:27.0.1453.7
  • Google Chrome 27.0.1453.8
    cpe:2.3:a:google:chrome:27.0.1453.8
  • Google Chrome 27.0.1453.5
    cpe:2.3:a:google:chrome:27.0.1453.5
  • Google Chrome 27.0.1453.6
    cpe:2.3:a:google:chrome:27.0.1453.6
  • Google Chrome 27.0.1453.34
    cpe:2.3:a:google:chrome:27.0.1453.34
  • Google Chrome 27.0.1453.15
    cpe:2.3:a:google:chrome:27.0.1453.15
  • Google Chrome 27.0.1453.36
    cpe:2.3:a:google:chrome:27.0.1453.36
  • Google Chrome 27.0.1453.35
    cpe:2.3:a:google:chrome:27.0.1453.35
  • Google Chrome 27.0.1453.11
    cpe:2.3:a:google:chrome:27.0.1453.11
  • Google Chrome 27.0.1453.0
    cpe:2.3:a:google:chrome:27.0.1453.0
  • Google Chrome 27.0.1453.13
    cpe:2.3:a:google:chrome:27.0.1453.13
  • Google Chrome 27.0.1453.12
    cpe:2.3:a:google:chrome:27.0.1453.12
  • Microsoft Windows
    cpe:2.3:o:microsoft:windows
CVSS
Base: 7.5 (as of 18-10-2016 - 07:39)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
nessus via4
NASL family Windows
NASL id GOOGLE_CHROME_27_0_1453_110.NASL
description The version of Google Chrome installed on the remote host is a version prior to 27.0.1453.110 and is, therefore, affected by the following vulnerabilities : - An error exists related to the renderer and bad handles. (CVE-2013-2854) - Errors exist related to dev tools API, Skia GPU handling and SSL socket handling that could result in memory corruption. (CVE-2013-2855, CVE-2013-2862, CVE-2013-2863) - Use-after-free errors exist related to input and image handling, HTML5 audio, workers accessing database APIs and SVG processing. (CVE-2013-2856, CVE-2013-2857, CVE-2013-2858, CVE-2013-2860, CVE-2013-2861) - An unspecified error exists that could allow cross- origin namespace pollution. (CVE-2013-2859) - An error exists in the PDF viewer that could allow bad free operations. (CVE-2013-2864) - The vendor reports various, unspecified errors exist. (CVE-2013-2865)
last seen 2019-02-21
modified 2018-11-15
plugin id 66813
published 2013-06-05
reporter Tenable
source https://www.tenable.com/plugins/index.php?view=single&id=66813
title Google Chrome < 27.0.1453.110 Multiple Vulnerabilities
oval via4
accepted 2013-08-12T04:08:49.150-04:00
class vulnerability
contributors
  • name Shane Shaffer
    organization G2, Inc.
  • name Maria Kedovskaya
    organization ALTX-SOFT
definition_extensions
comment Google Chrome is installed
oval oval:org.mitre.oval:def:11914
description Google Chrome before 27.0.1453.110 on Windows provides an incorrect handle to a renderer process in unspecified circumstances, which allows remote attackers to cause a denial of service or possibly have other impact via unknown vectors.
family windows
id oval:org.mitre.oval:def:16796
status accepted
submitted 2013-06-04T22:14:11.849-04:00
title Google Chrome before 27.0.1453.110 on Windows provides an incorrect handle to a renderer process in unspecified circumstances
version 42
refmap via4
confirm
Last major update 18-10-2016 - 11:09
Published 04-06-2013 - 20:55
Last modified 18-09-2017 - 21:36
Back to Top