CVE-2013-2834

Google Chrome OS before 26.0.1410.57 does not properly enforce origin restrictions for the O3D and Google Talk plug-ins, which allows remote attackers to bypass the domain-whitelist protection mechanism via a crafted web site, a different vulnerability than CVE-2013-2835.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

OR cpe:2.3:o:google:chrome_os:26.0.1410.12:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:26.0.1410.11:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:26.0.1410.10:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:26.0.1410.9:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:26.0.1410.29:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:26.0.1410.26:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:26.0.1410.27:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:26.0.1410.32:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:26.0.1410.45:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:26.0.1410.44:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:26.0.1410.47:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:26.0.1410.19:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:26.0.1410.25:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:26.0.1410.3:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:26.0.1410.7:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:26.0.1410.31:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:26.0.1410.46:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:26.0.1410.48:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:26.0.1410.50:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:26.0.1410.20:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:26.0.1410.23:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:26.0.1410.5:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:26.0.1410.38:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:26.0.1410.4:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:26.0.1410.0:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:26.0.1410.33:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:26.0.1410.28:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:26.0.1410.21:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:26.0.1410.43:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:26.0.1410.14:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:26.0.1410.18:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:26.0.1410.16:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:26.0.1410.37:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:26.0.1410.15:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:26.0.1410.22:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:*:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:26.0.1410.36:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:26.0.1410.6:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:26.0.1410.17:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:26.0.1410.52:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:26.0.1410.40:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:26.0.1410.39:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:26.0.1410.34:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:26.0.1410.30:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:26.0.1410.41:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:26.0.1410.54:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:26.0.1410.51:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:26.0.1410.55:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:26.0.1410.24:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:26.0.1410.35:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:26.0.1410.1:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:26.0.1410.49:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:26.0.1410.8:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:26.0.1410.42:*:*:*:*:*:*:*

Information

Published : 2013-04-16 13:55

Updated : 2013-04-16 21:00


NVD link : CVE-2013-2834

Mitre link : CVE-2013-2834


JSON object : View

CWE
CWE-264

Permissions, Privileges, and Access Controls

Advertisement

dedicated server usa

Products Affected

google

  • chrome_os