NVD

Id
38798  
Name
CVE-2013-2885  
Description
Use-after-free vulnerability in Google Chrome before 28.0.1500.95 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to not properly considering focus during the processing of JavaScript events in the presence of a multiple-fields input type.  
Reject
 
CVSS Version
2  
CVSS Score
7.5  
Severity
High  
CVSS Base Score
7.5  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:P/I:P/A:P)  
Pub Date
2017-01-18  
Published
2013-07-31  
Modified Date
2016-10-18  
Seq
2013-2885  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
198746 38798 CVE-2013-2885 http://googlechromereleases.blogspot.com/2013/07/stable-channel-update_30.html  View
198747 38798 CVE-2013-2885 oval:org.mitre.oval:def:17672  View
198748 38798 CVE-2013-2885 DSA-2732  View
198749 38798 CVE-2013-2885 https://chromium.googlesource.com/chromium/blink/+/7a7ea525c912f6e59aa3e915e7f2cf140c077a49  View
198750 38798 CVE-2013-2885 https://chromium.googlesource.com/chromium/blink/+/dd13a061c49579e40f381b2dc9409fb0a920ec19^  View
198751 38798 CVE-2013-2885 https://code.google.com/p/chromium/issues/detail?id=249640  View
198752 38798 CVE-2013-2885 https://code.google.com/p/chromium/issues/detail?id=257353  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
22021 JVNDB-2013-003596 Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 Google Chrome には、multiple-fields の入力タイプが存在する場合、JavaScript イベントの処理中にフォーカスに関する処理に不備があるため、解放済みメモリの使用 (Use-after-free) により、サービス運用妨害 (DoS) 状態にされるなど、不特定の影響を受ける脆弱性が存在します。 CVE-2013-2885 62827 CVE-2013-2885 38798 7.5 http://jvndb.jvn.jp/ja/contents/2013/JVNDB-2013-003596.html 2013-07-30 2013-08-01 View