Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5
CVSSv2

CVE-2012-2825

Published: 27/06/2012 Updated: 07/11/2023
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
VMScore: 447
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Subscribe to Google

Vulnerability Summary

The XSL implementation in Google Chrome prior to 20.0.1132.43 allows remote malicious users to cause a denial of service (incorrect read operation) via unspecified vectors.

Vulnerable Product Search on Vulmon Subscribe to Product

google chrome 20.0.1132.37

google chrome 20.0.1132.16

google chrome 20.0.1132.14

google chrome 20.0.1132.22

google chrome 20.0.1132.30

google chrome 20.0.1132.26

google chrome 20.0.1132.2

google chrome 20.0.1132.11

google chrome 20.0.1132.3

google chrome 20.0.1132.25

google chrome 20.0.1132.24

google chrome 20.0.1132.41

google chrome 20.0.1132.32

google chrome 20.0.1132.38

google chrome 20.0.1132.31

google chrome 20.0.1132.8

google chrome 20.0.1132.4

google chrome 20.0.1132.17

google chrome 20.0.1132.7

google chrome 20.0.1132.18

google chrome 20.0.1132.0

google chrome

google chrome 20.0.1132.5

google chrome 20.0.1132.27

google chrome 20.0.1132.1

google chrome 20.0.1132.35

google chrome 20.0.1132.15

google chrome 20.0.1132.20

google chrome 20.0.1132.21

google chrome 20.0.1132.33

google chrome 20.0.1132.10

google chrome 20.0.1132.9

google chrome 20.0.1132.23

google chrome 20.0.1132.28

google chrome 20.0.1132.19

google chrome 20.0.1132.36

google chrome 20.0.1132.12

google chrome 20.0.1132.13

google chrome 20.0.1132.29

google chrome 20.0.1132.6

google chrome 20.0.1132.39

google chrome 20.0.1132.34

google chrome 20.0.1132.40

Vendor Advisories

Red Hat: Important: libxslt security update
Synopsis Important: libxslt security update Type/Severity Security Advisory: Important Topic Updated libxslt packages that fix several security issues are now availablefor Red Hat Enterprise Linux 5 and 6The Red Hat Security Response Team has rated this update as havingimportant security impact Common Vul ...
Debian CVElist Bug Report Logs: CVE-2012-2825
Debian Bug report logs - #679283 CVE-2012-2825 Package: libxslt; Maintainer for libxslt is Debian XML/SGML Group <debian-xml-sgml-pkgs@listsaliothdebianorg>; Reported by: Moritz Muehlenhoff <muehlenhoff@univentionde> Date: Wed, 27 Jun 2012 15:21:09 UTC Severity: grave Tags: security Fixed in versions libxslt/11 ...
Ubuntu Security Notice: libxslt vulnerabilities
Applications using libxslt could be made to crash or run programs as your login if they processed a specially crafted file ...
Amazon Linux AMI: ALAS-2012-123
A heap-based buffer overflow flaw was found in the way libxslt applied templates to nodes selected by certain namespaces An attacker could use this flaw to create a malicious XSL file that, when used by an application linked against libxslt to perform an XSL transformation, could cause the application to crash or, possibly, execute arbitrary code ...

Recent Articles

Hacking Team had RATted on Android: Trend Micro
The Register • Richard Chirgwin • 23 Jul 2015

Android had been p0wned from Ice Creams to Jelly Beans

The next piece of weaponised malware to emerge out of the Hacking Team leak has arrived: a Remote Access Trojan (RAT) for Android. Trend Micro researchers trawling the 400 GB of leaked files apparently have the honour of first discovery: RCSAndroid, it says, is “one of the most professionally developed and sophisticated” pieces of Android malware* they've seen. Compromised phones can't be cleaned without root privilege, and Trend says users would probably need their device manufacturer's hel...

Read more...

References

CWE-20http://code.google.com/p/chromium/issues/detail?id=127417http://lists.apple.com/archives/security-announce/2013/Oct/msg00009.htmlhttps://hermes.opensuse.org/messages/15075728https://www.suse.com/support/update/announcement/2013/suse-su-20131654-1.htmlhttp://support.apple.com/kb/HT6001http://googlechromereleases.blogspot.com/2012/06/stable-channel-update_26.htmlhttps://www.suse.com/support/update/announcement/2013/suse-su-20131656-1.htmlhttp://secunia.com/advisories/54886http://support.apple.com/kb/HT5934http://lists.apple.com/archives/security-announce/2013/Sep/msg00006.htmlhttps://access.redhat.com/errata/RHSA-2012:1265https://usn.ubuntu.com/1595-1/https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30924CVE-2024-3400overflowCVE-2024-23528CVE-2024-21338CVE-2024-3818CVE-2024-23535NULL pointer dereferenceelevation of privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook