CVE-2013-2906

  1. Reconshell
  2. Vulnerabilities (CVE)
  3. CVE-2013-2906
Multiple race conditions in the Web Audio implementation in Blink, as used in Google Chrome before 30.0.1599.66, allow remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to threading in core/html/HTMLMediaElement.cpp, core/platform/audio/AudioDSPKernelProcessor.cpp, core/platform/audio/HRTFElevation.cpp, and modules/webaudio/ConvolverNode.cpp.

6.8 /10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:M/Au:N/C:P/I:P/A:P

Exploitability : 8.6 / Impact : 6.4

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References
Link Resource
https://code.google.com/p/chromium/issues/detail?id=284786
http://googlechromereleases.blogspot.com/2013/10/stable-channel-update.html Vendor Advisory
https://src.chromium.org/viewvc/blink?revision=157256&view=revision
https://code.google.com/p/chromium/issues/detail?id=270758
https://src.chromium.org/viewvc/blink?revision=157259&view=revision
https://src.chromium.org/viewvc/blink?revision=157243&view=revision
https://src.chromium.org/viewvc/blink?revision=157245&view=revision
https://src.chromium.org/viewvc/blink?revision=157273&view=revision
https://code.google.com/p/chromium/issues/detail?id=284785
https://code.google.com/p/chromium/issues/detail?id=271161
https://code.google.com/p/chromium/issues/detail?id=223962
http://lists.opensuse.org/opensuse-security-announce/2013-10/msg00002.html
http://lists.opensuse.org/opensuse-security-announce/2013-12/msg00002.html
http://www.debian.org/security/2013/dsa-2785
http://lists.opensuse.org/opensuse-updates/2014-01/msg00042.html
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19013
Advertisement

NeevaHost hosting service
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.64:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.53:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.52:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.42:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.41:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.34:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.33:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.26:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.25:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.17:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.28:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.1:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.51:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.18:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.50:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.56:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.44:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.35:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.2:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.20:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.47:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.19:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.61:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.57:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.43:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.60:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.36:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.40:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.27:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.10:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.11:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.39:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.6:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.14:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.0:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.7:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.38:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.31:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.15:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.9:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.4:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.12:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.5:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.16:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.23:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.13:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.37:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.22:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.29:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.24:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.48:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.58:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.49:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.21:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.32:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.30:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.59:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:30.0.1599.8:*:*:*:*:*:*:*
Information

Published : 2013-10-02 03:35

Updated : 2017-09-18 18:36

NVD link : CVE-2013-2906

Mitre link : CVE-2013-2906

JSON object : View

CWE
CWE-362

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Advertisement

dedicated server usa
Products Affected

google

  • chrome