Main Vulnerability Database Vulnerabilities #VU43950

#VU43950 Input validation error in Google Chrome - CVE-2012-2821

Published: June 27, 2012 / Updated: August 11, 2020

Vulnerability identifier: #VU43950

Vulnerability risk: Medium

CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:U/U:Green

CVE-ID: CVE-2012-2821

CWE-ID: CWE-20

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vulnerable software:
Google Chrome

Software vendor:
Google

Description

The vulnerability allows a remote non-authenticated attacker to read and manipulate data.

The autofill implementation in Google Chrome before 20.0.1132.43 does not properly display text, which has unspecified impact and remote attack vectors.

Remediation

Install update from vendor's website.

External links

http://code.google.com/p/chromium/issues/detail?id=122925
http://googlechromereleases.blogspot.com/2012/06/stable-channel-update_26.html
https://hermes.opensuse.org/messages/15075728
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15565

#VU43950 Input validation error in Google Chrome - CVE-2012-2821

Description

Remediation

External links

Please verify you're human