| CVSS Meta Temp Score | Current Exploit Price (≈) | CTI Interest Score |
|---|---|---|
| 6.4 | $0-$5k | 0.00 |
Summary
A vulnerability was found in Google Chrome 21.0.1180.89 and classified as problematic. Affected by this vulnerability is the function exit of the component Window Handler. Executing a manipulation can lead to resource management.
This vulnerability is handled as CVE-2012-2885. Additionally, an exploit exists.
It is suggested to upgrade the affected component.
Details
A vulnerability has been found in Google Chrome 21.0.1180.89 (Web Browser) and classified as critical. This vulnerability affects the function exit of the component Window Handler. The manipulation with an unknown input leads to a resource management vulnerability. The CWE definition for the vulnerability is CWE-399. As an impact it is known to affect confidentiality, integrity, and availability. CVE summarizes:
Double free vulnerability in Google Chrome before 22.0.1229.79 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to application exit.
The weakness was released 09/25/2012 by Gynvael Coldwind (Slawomir Blazek) with Chromium Development Community as 2012-2885 as confirmed posting (MITRE CVE). The advisory is shared for download at cve.mitre.org. The public release was coordinated with the vendor. This vulnerability was named CVE-2012-2885 since 05/19/2012. The exploitation appears to be easy. The attack can be initiated remotely. No form of authentication is required for a successful exploitation. Technical details and also a private exploit are known.
It is declared as proof-of-concept. The vulnerability scanner Nessus provides a plugin with the ID 62340 (FreeBSD : chromium -- multiple vulnerabilities (5bae2ab4-0820-11e2-be5f-00262d5ed8ee)), which helps to determine the existence of the flaw in a target environment. It is assigned to the family FreeBSD Local Security Checks. The commercial vulnerability scanner Qualys is able to test this issue with plugin 165397 (SUSE Security Update for Chromium (openSUSE-SU-2012:1376-1)).
Upgrading to version 22.0.1229.79 eliminates this vulnerability. The upgrade is hosted for download at chrome.google.com. Applying a patch is able to eliminate this problem. The bugfix is ready for download at src.chromium.org. The best possible mitigation is suggested to be upgrading to the latest version. A possible mitigation has been published immediately after the disclosure of the vulnerability.
The vulnerability is also documented in the databases at X-Force (78840), Tenable (62340), SecurityFocus (BID 55676†), OSVDB (85755†) and Secunia (SA50759†). Entries connected to this vulnerability are available at VDB-6550, VDB-6551, VDB-6552 and VDB-6553. Once again VulDB remains the best source for vulnerability data.
Product
Type
Vendor
Name
Version
License
Website
- Vendor: https://www.google.com/
- Product: https://www.google.com/chrome/
CPE 2.3
CPE 2.2
CVSSv4
VulDB Vector: 🔍VulDB Reliability: 🔍
CVSSv3
VulDB Meta Base Score: 7.3VulDB Meta Temp Score: 6.4
VulDB Base Score: 7.3
VulDB Temp Score: 6.4
VulDB Vector: 🔍
VulDB Reliability: 🔍
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
VulDB Base Score: 🔍
VulDB Temp Score: 🔍
VulDB Reliability: 🔍
NVD Base Score: 🔍
Exploiting
Class: Resource managementCWE: CWE-399 / CWE-404
CAPEC: 🔍
ATT&CK: 🔍
Physical: No
Local: No
Remote: Yes
Availability: 🔍
Access: Private
Status: Proof-of-Concept
EPSS Score: 🔍
EPSS Percentile: 🔍
Price Prediction: 🔍
Current Price Estimation: 🔍
| 0-Day | Unlock | Unlock | Unlock | Unlock |
|---|---|---|---|---|
| Today | Unlock | Unlock | Unlock | Unlock |
Nessus ID: 62340
Nessus Name: FreeBSD : chromium -- multiple vulnerabilities (5bae2ab4-0820-11e2-be5f-00262d5ed8ee)
Nessus File: 🔍
Nessus Risk: 🔍
Nessus Family: 🔍
OpenVAS ID: 72445
OpenVAS Name: FreeBSD Ports: chromium
OpenVAS File: 🔍
OpenVAS Family: 🔍
Qualys ID: 🔍
Qualys Name: 🔍
Threat Intelligence
Interest: 🔍Active Actors: 🔍
Active APT Groups: 🔍
Countermeasures
Recommended: UpgradeStatus: 🔍
Reaction Time: 🔍
0-Day Time: 🔍
Exposure Time: 🔍
Upgrade: Chrome 22.0.1229.79
Patch: src.chromium.org
Timeline
05/19/2012 🔍09/25/2012 🔍
09/25/2012 🔍
09/25/2012 🔍
09/25/2012 🔍
09/26/2012 🔍
09/27/2012 🔍
10/01/2012 🔍
10/14/2012 🔍
04/14/2021 🔍
Sources
Vendor: google.comProduct: google.com
Advisory: 2012-2885
Researcher: Gynvael Coldwind (Slawomir Blazek)
Organization: Chromium Development Community
Status: Confirmed
Confirmation: 🔍
Coordinated: 🔍
CVE: CVE-2012-2885 (🔍)
GCVE (CVE): GCVE-0-2012-2885
GCVE (VulDB): GCVE-100-6556
OVAL: 🔍
X-Force: 78840 - Google Chrome CVE-2012-2885 possible double free on exit, Medium Risk
SecurityFocus: 55676 - Google Chrome Prior to 22.0.1229.79 Multiple Security Vulnerabilities
Secunia: 50759 - Google Chrome Multiple Vulnerabilities, Highly Critical
OSVDB: 85755
Vulnerability Center: 36514 - Google Chrome <22.0.1229.79 Double-Free Vulnerability Allows Remote DoS, Medium
scip Labs: https://www.scip.ch/en/?labs.20161013
See also: 🔍
Entry
Created: 10/01/2012 14:41Updated: 04/14/2021 13:52
Changes: 10/01/2012 14:41 (87), 04/18/2017 11:22 (8), 04/14/2021 13:52 (3)
Complete: 🔍
Committer: olku
Cache ID: 216::103
Once again VulDB remains the best source for vulnerability data.
No comments yet. Languages: en.
Please log in to comment.