CVE-2012-5150

high
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

Use-after-free vulnerability in Google Chrome before 24.0.1312.52 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving seek operations on video data.

References

http://googlechromereleases.blogspot.com/2013/01/stable-channel-update.html

http://lists.opensuse.org/opensuse-updates/2013-02/msg00005.html

https://code.google.com/p/chromium/issues/detail?id=165601

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16440

Details

Source: MITRE

Published: 2013-01-15

Updated: 2018-10-30

Type: CWE-399

Risk Information

CVSS v2

Base Score: 7.5

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Impact Score: 6.4

Exploitability Score: 10

Severity: HIGH

Vulnerable Software

Configuration 1

OR

cpe:2.3:a:google:chrome:24.0.1272.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1272.1:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1273.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1274.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1275.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1276.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1276.1:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1277.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1278.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1279.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1280.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1281.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1281.1:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1281.2:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1281.3:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1282.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1283.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1284.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1284.1:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1284.2:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1285.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1285.1:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1285.2:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1286.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1286.1:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1287.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1287.1:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1288.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1288.1:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1289.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1289.1:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1290.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1291.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1292.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1293.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1294.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1295.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1296.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1297.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1298.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1299.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1300.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1301.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1301.2:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1302.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1303.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1304.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1304.1:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1305.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1305.1:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1305.2:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1305.3:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1305.4:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1306.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1306.1:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1307.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1307.1:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1308.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1309.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1310.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1311.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1311.1:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1312.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1312.1:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1312.4:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1312.5:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1312.6:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1312.7:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1312.8:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1312.9:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1312.10:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1312.11:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1312.12:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1312.13:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1312.14:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1312.15:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1312.16:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1312.17:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1312.18:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1312.19:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1312.20:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1312.21:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1312.22:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1312.23:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1312.24:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1312.25:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1312.26:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1312.27:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1312.28:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1312.29:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1312.30:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1312.31:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1312.32:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1312.33:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1312.34:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1312.35:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1312.36:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1312.37:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1312.38:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1312.39:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1312.40:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1312.41:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1312.42:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1312.43:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1312.44:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1312.45:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1312.46:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1312.47:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1312.48:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1312.49:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:24.0.1312.50:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:* versions up to 24.0.1312.51 (inclusive)

Configuration 2

OR

cpe:2.3:o:opensuse:opensuse:12.1:*:*:*:*:*:*:*

cpe:2.3:o:opensuse:opensuse:12.2:*:*:*:*:*:*:*

Tenable Plugins

View all (8 total)

IDNameProductFamilySeverity
83940FreeBSD : ffmpeg -- multiple vulnerabilities (65b14d39-d01f-419c-b0b8-5df60b929973)NessusFreeBSD Local Security Checks
high
76437Mandriva Linux Security Advisory : ffmpeg (MDVSA-2014:129)NessusMandriva Local Security Checks
critical
75155openSUSE Security Update : chromium (openSUSE-SU-2013:0236-1)NessusSuSE Local Security Checks
high
70112GLSA-201309-16 : Chromium, V8: Multiple vulnerabilitiesNessusGentoo Local Security Checks
critical
63469FreeBSD : chromium -- multiple vulnerabilities (46bd747b-5b84-11e2-b06d-00262d5ed8ee)NessusFreeBSD Local Security Checks
high
63468Google Chrome < 24.0.1312.52 Multiple VulnerabilitiesNessusWindows
critical
800917Google Chrome < 24.0.1312.52 Multiple VulnerabilitiesLog Correlation EngineWeb Clients
high
6663Google Chrome < 24.0.1312.52 Multiple VulnerabilitiesNessus Network MonitorWeb Clients
high