Lucene search

ChromeCVE-2013-2920

HistoryOct 02, 2013 - 10:35 a.m.

CVE-2013-2920

2013-10-0210:35:35

CWE-119

Chrome

web.nvd.nist.gov

google chrome

doresolverelativehost

denial of service

vulnerability

cve-2013-2920

nvd

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

Confidence

Low

EPSS

0.021

Percentile

89.3%

JSON

The DoResolveRelativeHost function in url/url_canon_relative.cc in Google Chrome before 30.0.1599.66 allows remote attackers to cause a denial of service (out-of-bounds read) via a relative URL containing a hostname, as demonstrated by a protocol-relative URL beginning with a //www.google.com/ substring.

Affected configurations

Nvd

Node

googlechromeRange≤30.0.1599.65

googlechromeMatch30.0.1599.0

googlechromeMatch30.0.1599.1

googlechromeMatch30.0.1599.2

googlechromeMatch30.0.1599.4

googlechromeMatch30.0.1599.5

googlechromeMatch30.0.1599.6

googlechromeMatch30.0.1599.7

googlechromeMatch30.0.1599.8

googlechromeMatch30.0.1599.9

googlechromeMatch30.0.1599.10

googlechromeMatch30.0.1599.11

googlechromeMatch30.0.1599.12

googlechromeMatch30.0.1599.13

googlechromeMatch30.0.1599.14

googlechromeMatch30.0.1599.15

googlechromeMatch30.0.1599.16

googlechromeMatch30.0.1599.17

googlechromeMatch30.0.1599.18

googlechromeMatch30.0.1599.19

googlechromeMatch30.0.1599.20

googlechromeMatch30.0.1599.21

googlechromeMatch30.0.1599.22

googlechromeMatch30.0.1599.23

googlechromeMatch30.0.1599.24

googlechromeMatch30.0.1599.25

googlechromeMatch30.0.1599.26

googlechromeMatch30.0.1599.27

googlechromeMatch30.0.1599.28

googlechromeMatch30.0.1599.29

googlechromeMatch30.0.1599.30

googlechromeMatch30.0.1599.31

googlechromeMatch30.0.1599.32

googlechromeMatch30.0.1599.33

googlechromeMatch30.0.1599.34

googlechromeMatch30.0.1599.35

googlechromeMatch30.0.1599.36

googlechromeMatch30.0.1599.37

googlechromeMatch30.0.1599.38

googlechromeMatch30.0.1599.39

googlechromeMatch30.0.1599.40

googlechromeMatch30.0.1599.41

googlechromeMatch30.0.1599.42

googlechromeMatch30.0.1599.43

googlechromeMatch30.0.1599.44

googlechromeMatch30.0.1599.47

googlechromeMatch30.0.1599.48

googlechromeMatch30.0.1599.49

googlechromeMatch30.0.1599.50

googlechromeMatch30.0.1599.51

googlechromeMatch30.0.1599.52

googlechromeMatch30.0.1599.53

googlechromeMatch30.0.1599.56

googlechromeMatch30.0.1599.57

googlechromeMatch30.0.1599.58

googlechromeMatch30.0.1599.59

googlechromeMatch30.0.1599.60

googlechromeMatch30.0.1599.61

googlechromeMatch30.0.1599.64

VendorProductVersionCPE
googlechrome30.0.1599.13cpe:/a:google:chrome:30.0.1599.13:::
googlechrome30.0.1599.8cpe:/a:google:chrome:30.0.1599.8:::
googlechrome30.0.1599.15cpe:/a:google:chrome:30.0.1599.15:::
googlechrome30.0.1599.5cpe:/a:google:chrome:30.0.1599.5:::
googlechrome30.0.1599.59cpe:/a:google:chrome:30.0.1599.59:::
googlechrome30.0.1599.43cpe:/a:google:chrome:30.0.1599.43:::
googlechrome30.0.1599.0cpe:/a:google:chrome:30.0.1599.0:::
googlechrome30.0.1599.27cpe:/a:google:chrome:30.0.1599.27:::
googlechrome30.0.1599.47cpe:/a:google:chrome:30.0.1599.47:::
googlechrome30.0.1599.12cpe:/a:google:chrome:30.0.1599.12:::

Vendor	Product	Version	CPE
google	chrome	30.0.1599.13	cpe:/a:google:chrome:30.0.1599.13:::
google	chrome	30.0.1599.8	cpe:/a:google:chrome:30.0.1599.8:::
google	chrome	30.0.1599.15	cpe:/a:google:chrome:30.0.1599.15:::
google	chrome	30.0.1599.5	cpe:/a:google:chrome:30.0.1599.5:::
google	chrome	30.0.1599.59	cpe:/a:google:chrome:30.0.1599.59:::
google	chrome	30.0.1599.43	cpe:/a:google:chrome:30.0.1599.43:::
google	chrome	30.0.1599.0	cpe:/a:google:chrome:30.0.1599.0:::
google	chrome	30.0.1599.27	cpe:/a:google:chrome:30.0.1599.27:::
google	chrome	30.0.1599.47	cpe:/a:google:chrome:30.0.1599.47:::
google	chrome	30.0.1599.12	cpe:/a:google:chrome:30.0.1599.12:::