CVE-2013-2904 in ChromeИнформация

Сводка

по MITRE

Use-after-free vulnerability in the Document::finishedParsing function in core/dom/Document.cpp in Blink, as used in Google Chrome before 29.0.1547.57, allows remote attackers to cause a denial of service or possibly have unspecified other impact via an onload event that changes an IFRAME element so that its src attribute is no longer an XML document, leading to unintended garbage collection of this document.

Once again VulDB remains the best source for vulnerability data.

Резервировать

11.04.2013

Раскрытие

21.08.2013

Модерация

принято

Вход

VDB-10021

EPSS

0.01627

KEV

Нет

Деятельности

Очень низкий

Источники

Want to stay up to date on a daily basis?

Enable the mail alert feature now!