科学数据库门户
您当前的位置是:
 | 
搜索   在 
 首页
新闻中心
漏洞数据
服务公告
服务案例
使用指南
关于本库
T-DB
 
Google Chrome 多个未知漏洞

漏洞编号: NIPC-2014-3565
CVE编号: CVE-2014-3175
漏洞类别: 信息不足
发布日期: 2014-08-26
更新日期: 2014-08-27
CVSS值: 10.0
严重级别: 紧急
利用范围: 网络
攻击复杂度:
认证级别: 没有
机密性影响: 整体
完整性影响: 整体
可用性影响: 整体
漏洞描述:

Google Chrome 中存在多个未知的漏洞, 受影响的产品, 版本早于 37.0.2062.94, 允许攻击者 , 通过未知向量, 引起关于 load_truetype_glyph 函数的拒绝服务攻击或者可能有其它影响


受影响系统或软件:
Configuration 1 OR * cpe:/a:google:chrome:37.0.2062.0 * cpe:/a:google:chrome:37.0.2062.1 * cpe:/a:google:chrome:37.0.2062.10 * cpe:/a:google:chrome:37.0.2062.11 * cpe:/a:google:chrome:37.0.2062.12 * cpe:/a:google:chrome:37.0.2062.13 * cpe:/a:google:chrome:37.0.2062.14 * cpe:/a:google:chrome:37.0.2062.15 * cpe:/a:google:chrome:37.0.2062.16 * cpe:/a:google:chrome:37.0.2062.17 * cpe:/a:google:chrome:37.0.2062.18 * cpe:/a:google:chrome:37.0.2062.19 * cpe:/a:google:chrome:37.0.2062.2 * cpe:/a:google:chrome:37.0.2062.20 * cpe:/a:google:chrome:37.0.2062.21 * cpe:/a:google:chrome:37.0.2062.22 * cpe:/a:google:chrome:37.0.2062.23 * cpe:/a:google:chrome:37.0.2062.24 * cpe:/a:google:chrome:37.0.2062.25 * cpe:/a:google:chrome:37.0.2062.26 * cpe:/a:google:chrome:37.0.2062.27 * cpe:/a:google:chrome:37.0.2062.28 * cpe:/a:google:chrome:37.0.2062.29 * cpe:/a:google:chrome:37.0.2062.3 * cpe:/a:google:chrome:37.0.2062.30 * cpe:/a:google:chrome:37.0.2062.31 * cpe:/a:google:chrome:37.0.2062.32 * cpe:/a:google:chrome:37.0.2062.33 * cpe:/a:google:chrome:37.0.2062.34 * cpe:/a:google:chrome:37.0.2062.35 * cpe:/a:google:chrome:37.0.2062.36 * cpe:/a:google:chrome:37.0.2062.37 * cpe:/a:google:chrome:37.0.2062.39 * cpe:/a:google:chrome:37.0.2062.4 * cpe:/a:google:chrome:37.0.2062.43 * cpe:/a:google:chrome:37.0.2062.44 * cpe:/a:google:chrome:37.0.2062.45 * cpe:/a:google:chrome:37.0.2062.46 * cpe:/a:google:chrome:37.0.2062.47 * cpe:/a:google:chrome:37.0.2062.48 * cpe:/a:google:chrome:37.0.2062.49 * cpe:/a:google:chrome:37.0.2062.5 * cpe:/a:google:chrome:37.0.2062.50 * cpe:/a:google:chrome:37.0.2062.51 * cpe:/a:google:chrome:37.0.2062.52 * cpe:/a:google:chrome:37.0.2062.53 * cpe:/a:google:chrome:37.0.2062.54 * cpe:/a:google:chrome:37.0.2062.55 * cpe:/a:google:chrome:37.0.2062.56 * cpe:/a:google:chrome:37.0.2062.57 * cpe:/a:google:chrome:37.0.2062.58 * cpe:/a:google:chrome:37.0.2062.59 * cpe:/a:google:chrome:37.0.2062.6 * cpe:/a:google:chrome:37.0.2062.60 * cpe:/a:google:chrome:37.0.2062.61 * cpe:/a:google:chrome:37.0.2062.62 * cpe:/a:google:chrome:37.0.2062.63 * cpe:/a:google:chrome:37.0.2062.64 * cpe:/a:google:chrome:37.0.2062.65 * cpe:/a:google:chrome:37.0.2062.66 * cpe:/a:google:chrome:37.0.2062.67 * cpe:/a:google:chrome:37.0.2062.68 * cpe:/a:google:chrome:37.0.2062.69 * cpe:/a:google:chrome:37.0.2062.7 * cpe:/a:google:chrome:37.0.2062.70 * cpe:/a:google:chrome:37.0.2062.71 * cpe:/a:google:chrome:37.0.2062.72 * cpe:/a:google:chrome:37.0.2062.73 * cpe:/a:google:chrome:37.0.2062.74 * cpe:/a:google:chrome:37.0.2062.75 * cpe:/a:google:chrome:37.0.2062.76 * cpe:/a:google:chrome:37.0.2062.77 * cpe:/a:google:chrome:37.0.2062.78 * cpe:/a:google:chrome:37.0.2062.8 * cpe:/a:google:chrome:37.0.2062.80 * cpe:/a:google:chrome:37.0.2062.81 * cpe:/a:google:chrome:37.0.2062.89 * cpe:/a:google:chrome:37.0.2062.9 * cpe:/a:google:chrome:37.0.2062.90 * cpe:/a:google:chrome:37.0.2062.91 * cpe:/a:google:chrome:37.0.2062.92 * cpe:/a:google:chrome:37.0.2062.93 and previous versions

解决方案:
厂商已修复该漏洞

参考资源:
http://packetstormsecurity.com/files/127724/WordPress-Gamespeed-Theme-Cross-Site-Scripting.html https://code.google.com/p/timthumb/issues/detail?id=49 https://code.google.com/p/timthumb/source/detail?r=65 http://www.osvdb.org/71878

致  谢 
友情链接