CVE-2014-7939

Google Chrome before 40.0.2214.91, when the Harmony proxy in Google V8 is enabled, allows remote attackers to bypass the Same Origin Policy via crafted JavaScript code with Proxy.create and console.log calls, related to HTTP responses that lack an "X-Content-Type-Options: nosniff" header.

CVSS v2.0 4.3 MEDIUM

4.3^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:M/Au:N/C:N/I:P/A:N

Exploitability : 8.6 / Impact : 2.9

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact NONE

References

Link	Resource
http://googlechromereleases.blogspot.com/2015/01/stable-update.html	Vendor Advisory
https://code.google.com/p/chromium/issues/detail?id=399951	Vendor Advisory
http://security.gentoo.org/glsa/glsa-201502-13.xml
http://rhn.redhat.com/errata/RHSA-2015-0093.html
http://www.securityfocus.com/bid/72288
http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00005.html
http://www.securitytracker.com/id/1031623
http://secunia.com/advisories/62665
http://secunia.com/advisories/62383

Configurations

Configuration 1 (hide)

cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:a:chromium:chromium:40.0.2214.110:*:*:*:*:*:*:*

Configuration 3 (hide)

OR	cpe:2.3:o:redhat:enterprise_linux_server_supplementary_eus:6.6.z:::::::*
	cpe:2.3:o:redhat:enterprise_linux_server_supplementary:6.0:::::::*
	cpe:2.3:o:redhat:enterprise_linux_desktop_supplementary:6.0:::::::*
	cpe:2.3:o:redhat:enterprise_linux_workstation_supplementary:6.0:::::::*

Configuration 4 (hide)

OR	cpe:2.3:o:opensuse:opensuse:13.2:::::::*
	cpe:2.3:o:opensuse:opensuse:13.1:::::::*

Information

Published : 2015-01-22 14:59

Updated : 2018-10-30 09:27

NVD link : CVE-2014-7939

Mitre link : CVE-2014-7939

JSON object : View

CWE

CWE-264

Permissions, Privileges, and Access Controls

Products Affected

redhat

enterprise_linux_server_supplementary_eus
enterprise_linux_desktop_supplementary
enterprise_linux_workstation_supplementary
enterprise_linux_server_supplementary

google

chrome

chromium

chromium

opensuse

opensuse

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://googlechromereleases.blogspot.com/2015/01/stable-update.html", "name": "http://googlechromereleases.blogspot.com/2015/01/stable-update.html", "tags": ["Vendor Advisory"], "refsource": "CONFIRM"}, {"url": "https://code.google.com/p/chromium/issues/detail?id=399951", "name": "https://code.google.com/p/chromium/issues/detail?id=399951", "tags": ["Vendor Advisory"], "refsource": "CONFIRM"}, {"url": "http://security.gentoo.org/glsa/glsa-201502-13.xml", "name": "GLSA-201502-13", "tags": [], "refsource": "GENTOO"}, {"url": "http://rhn.redhat.com/errata/RHSA-2015-0093.html", "name": "RHSA-2015:0093", "tags": [], "refsource": "REDHAT"}, {"url": "http://www.securityfocus.com/bid/72288", "name": "72288", "tags": [], "refsource": "BID"}, {"url": "http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00005.html", "name": "openSUSE-SU-2015:0441", "tags": [], "refsource": "SUSE"}, {"url": "http://www.securitytracker.com/id/1031623", "name": "1031623", "tags": [], "refsource": "SECTRACK"}, {"url": "http://secunia.com/advisories/62665", "name": "62665", "tags": [], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/62383", "name": "62383", "tags": [], "refsource": "SECUNIA"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Google Chrome before 40.0.2214.91, when the Harmony proxy in Google V8 is enabled, allows remote attackers to bypass the Same Origin Policy via crafted JavaScript code with Proxy.create and console.log calls, related to HTTP responses that lack an \"X-Content-Type-Options: nosniff\" header."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-264"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2014-7939", "ASSIGNER": "security@google.com"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 4.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "NONE", "confidentialityImpact": "NONE"}, "severity": "MEDIUM", "impactScore": 2.9, "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2015-01-22T22:59Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "40.0.2214.85"}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:chromium:chromium:40.0.2214.110:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_supplementary_eus:6.6.z:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_supplementary:6.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_desktop_supplementary:6.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_workstation_supplementary:6.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2018-10-30T16:27Z"}

4.3 /10