CVE-2014-1732

Common vulnerabilities & exposures (CVE)

CVE database CVE database blogpost Release & EoL database

Published at: - 26-04-2014 12:55

Last modified: - 26-10-2022 01:44

Total changes: - 4

Description

Use-after-free vulnerability in browser/ui/views/speech_recognition_bubble_views.cc in Google Chrome before 34.0.1847.131 on Windows and OS X and before 34.0.1847.132 on Linux allows remote attackers to cause a denial of service or possibly have unspecified other impact via an INPUT element that triggers the presence of a Speech Recognition Bubble window for an incorrect duration.

Common Vulnerability Scoring System (CVSS)

AV:N/AC:L/Au:N/C:P/I:P/A:P

Low

Attack complexity

Network

Attack vector

Low

Availability

Low

Confidentiality

Low

Integrity

Privileges required

Scope

User interaction

7.5

Base score

10.0

6.4

Exploitability score

Impact score

Verification logic

Reference

http://googlechromereleases.blogspot.com/2014/04/stable-channel-update_24.html
https://src.chromium.org/viewvc/chrome?revision=261737&view=revision
https://code.google.com/p/chromium/issues/detail?id=352851
58301-
DSA-2920-
openSUSE-SU-2014:0669-
openSUSE-SU-2014:0668-
GLSA-201408-16-

Keywords

CVE-2014-1732

Common vulnerabilities & exposures (CVE)

Description

Common Vulnerability Scoring System (CVSS)

Verification logic

Reference

NVD

CVE-2014-1732

CVE

Common vulnerabilities & exposures

CVSS

Common vulnerability scoring system

Security

Vulnerabilities

Exposures