FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2013-0926

This CVE name corresponds to:

Entered Topic
2013-03-26 chromium -- multiple vulnerabilities

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

CVE-2013-0926 at cve.mitre.org

Details

Type Candidate
Name CVE-2013-0926
Phase Assigned(20130107)

Description

Google Chrome before 26.0.1410.43 does not properly handle active content in an EMBED element during a copy-and-paste operation, which allows user-assisted remote attackers to have an unspecified impact via a crafted web site.

References

Source Reference
CONFIRM http://git.chromium.org/gitweb/?p=chromium/src.git;a=commit;h=52a30db57ecec68bb3b25fdc3de5e9bee7b80ed7
CONFIRM http://googlechromereleases.blogspot.com/2013/03/stable-channel-update_26.html
CONFIRM https://chromiumcodereview.appspot.com/11884025
CONFIRM https://code.google.com/p/chromium/issues/detail?id=112325
CONFIRM https://src.chromium.org/viewvc/chrome?view=rev&revision=176856
CONFIRM http://support.apple.com/kb/HT5785
CONFIRM http://support.apple.com/kb/HT5934
APPLE APPLE-SA-2013-06-04-2
APPLE APPLE-SA-2013-09-18-2
OVAL oval:org.mitre.oval:def:16601
SECUNIA 54886

Copyright © 2005 The MITRE Corporation.

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.