Published: 31/07/2013 Updated: 07/11/2023

CVSS v2 Base Score: 5.8 | Impact Score: 4.9 | Exploitability Score: 8.6

VMScore: 516

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:N

Google Chrome prior to 28.0.1500.95 does not properly handle frames, which allows remote malicious users to bypass the Same Origin Policy via a crafted web site.

Vulnerable Product	Search on Vulmon	Subscribe to Product
google chrome 28.0.1500.68
google chrome 28.0.1500.26
google chrome 28.0.1500.31
google chrome 28.0.1500.0
google chrome 28.0.1500.33
google chrome 28.0.1500.29
google chrome 28.0.1500.25
google chrome 28.0.1500.66
google chrome 28.0.1500.41
google chrome 28.0.1500.12
google chrome 28.0.1500.13
google chrome 28.0.1500.62
google chrome 28.0.1500.20
google chrome 28.0.1500.39
google chrome 28.0.1500.60
google chrome 28.0.1500.15
google chrome 28.0.1500.72
google chrome 28.0.1500.59
google chrome 28.0.1500.23
google chrome 28.0.1500.45
google chrome 28.0.1500.43
google chrome 28.0.1500.40
google chrome 28.0.1500.3
google chrome 28.0.1500.52
google chrome 28.0.1500.34
google chrome 28.0.1500.46
google chrome 28.0.1500.70
google chrome 28.0.1500.8
google chrome 28.0.1500.63
google chrome 28.0.1500.53
google chrome 28.0.1500.4
google chrome 28.0.1500.36
google chrome 28.0.1500.44
google chrome 28.0.1500.51
google chrome 28.0.1500.19
google chrome 28.0.1500.2
google chrome 28.0.1500.50
google chrome 28.0.1500.56
google chrome 28.0.1500.91
google chrome 28.0.1500.54
google chrome 28.0.1500.18
google chrome 28.0.1500.27
google chrome 28.0.1500.21
google chrome 28.0.1500.14
google chrome 28.0.1500.9
google chrome 28.0.1500.16
google chrome 28.0.1500.37
google chrome 28.0.1500.6
google chrome 28.0.1500.47
google chrome 28.0.1500.42
google chrome
google chrome 28.0.1500.89
google chrome 28.0.1500.11
google chrome 28.0.1500.17
google chrome 28.0.1500.93
google chrome 28.0.1500.28
google chrome 28.0.1500.49
google chrome 28.0.1500.35
google chrome 28.0.1500.61
google chrome 28.0.1500.71
google chrome 28.0.1500.48
google chrome 28.0.1500.22
google chrome 28.0.1500.64
google chrome 28.0.1500.24
google chrome 28.0.1500.58
google chrome 28.0.1500.10
google chrome 28.0.1500.32
google chrome 28.0.1500.5
google chrome 28.0.1500.38
debian debian linux 7.0

Several vulnerabilities have been discovered in the Chromium web browser CVE-2013-2881 Karthik Bhargavan discovered a way to bypass the Same Origin Policy in frame handling CVE-2013-2882 Cloudfuzzer discovered a type confusion issue in the V8 javascript library CVE-2013-2883 Cloudfuzzer discovered a use-after-free issue in M ...

CWE-264 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A17348 http://www.debian.org/security/2013/dsa-2732 http://googlechromereleases.blogspot.com/2013/07/stable-channel-update_30.html https://src.chromium.org/viewvc/blink?revision=153929&view=revision https://code.google.com/p/chromium/issues/detail?id=257748 https://nvd.nist.gov https://www.debian.org/security/./dsa-2732

CVE-2013-2881

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect