Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-2857

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2012-2857
Last Modified 30 Sep 2013 09:59:03
Published 06 Aug 2012 11:55:01
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2012-2857

Summary

Use-after-free vulnerability in the Cascading Style Sheets (CSS) DOM implementation in Google Chrome before 21.0.1180.57 on Mac OS X and Linux, and before 21.0.1180.60 on Windows and Chrome Frame, allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted document.

Vulnerable Systems

Operating System

  • Apple Iphone Os 6.0

  • Apple Iphone Os 6.0.1

  • Apple Iphone Os 6.0.2

  • Apple Mac Os X

  • Linux Kernel

  • Microsoft Windows

Application

  • Google Chrome 21.0.1180.0

  • Google Chrome 21.0.1180.1

  • Google Chrome 21.0.1180.2

  • Google Chrome 21.0.1180.31

  • Google Chrome 21.0.1180.32

  • Google Chrome 21.0.1180.33

  • Google Chrome 21.0.1180.34

  • Google Chrome 21.0.1180.35

  • Google Chrome 21.0.1180.36

  • Google Chrome 21.0.1180.37

  • Google Chrome 21.0.1180.38

  • Google Chrome 21.0.1180.39

  • Google Chrome 21.0.1180.41

  • Google Chrome 21.0.1180.46

  • Google Chrome 21.0.1180.47

  • Google Chrome 21.0.1180.48

  • Google Chrome 21.0.1180.49

  • Google Chrome 21.0.1180.50

  • Google Chrome 21.0.1180.51

  • Google Chrome 21.0.1180.52

  • Google Chrome 21.0.1180.53

  • Google Chrome 21.0.1180.54

  • Google Chrome 21.0.1180.55

  • Google Chrome 21.0.1180.56

  • Google Chrome 21.0.1180.57

  • Google Chrome 21.0.1180.59

  • Google Frame -


References

CONFIRM - http://googlechromereleases.blogspot.com/2012/07/stable-channel-release.html

CONFIRM - http://code.google.com/p/chromium/issues/detail?id=136235

CONFIRM - http://support.apple.com/kb/HT5642

APPLE - APPLE-SA-2013-01-28-1

APPLE - APPLE-SA-2013-03-14-2

Related Patches

Apple 2013-03-14 Mac OS X 10.8.3 Combo Update (Rev 3)

Apple 2013-03-14 Safari Update 6.0.3 (Lion) (See Note)

Apple iTunes 11.0.3 for Windows (Update) (All Languages) (See Notes) (Rev 2)


Last Updated: 27 May 2016 10:53:34