CVE-2013-0895

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2013-0895
Google Chrome before 25.0.1364.97 on Linux, and before 25.0.1364.99 on Mac OS X, does not properly handle pathnames during copy operations, which might make it easier for remote attackers to execute arbitrary programs via unspecified vectors.

7.5 /10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 10.0 / Impact : 6.4

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References
Link Resource
http://googlechromereleases.blogspot.com/2013/02/stable-channel-update_21.html
http://lists.opensuse.org/opensuse-updates/2013-03/msg00045.html
https://code.google.com/p/chromium/issues/detail?id=167840
Configurations

Configuration 1 (hide)

AND
cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
OR cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:-:*:*:*:*:*:*:*
History

07 Nov 2023, 02:14

Type Values Removed Values Added
References (CONFIRM) http://googlechromereleases.blogspot.com/2013/02/stable-channel-update_21.html - Release Notes, Vendor Advisory () http://googlechromereleases.blogspot.com/2013/02/stable-channel-update_21.html -
References (CONFIRM) https://code.google.com/p/chromium/issues/detail?id=167840 - Exploit, Issue Tracking, Mailing List, Vendor Advisory () https://code.google.com/p/chromium/issues/detail?id=167840 -
References (SUSE) http://lists.opensuse.org/opensuse-updates/2013-03/msg00045.html - Broken Link, Third Party Advisory () http://lists.opensuse.org/opensuse-updates/2013-03/msg00045.html -

18 Nov 2022, 20:03

Type Values Removed Values Added
CPE cpe:2.3:a:google:chrome:25.0.1364.44:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.42:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.76:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.53:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.56:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.52:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.20:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.75:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.85:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.79:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.72:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.3:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.55:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.73:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.30:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.15:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.66:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.49:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.70:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.58:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.13:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.63:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.18:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.38:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.89:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.37:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.16:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.95:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.5:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.87:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.84:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.24:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.17:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.45:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.57:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.9:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.40:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.10:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.88:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.93:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.80:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.8:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.11:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.12:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.41:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.65:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.0:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.43:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.14:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.25:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.39:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.23:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.32:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.31:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.2:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.35:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.1:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.26:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.77:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.27:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.19:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.68:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.91:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.29:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.21:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.82:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.62:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.61:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.54:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.92:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.74:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.46:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.86:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.51:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.7:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.36:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.90:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.78:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.67:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.50:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.22:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.28:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.48:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.34:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.47:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.81:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.33:*:*:*:*:*:*:*		 cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:-:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
References (CONFIRM) http://googlechromereleases.blogspot.com/2013/02/stable-channel-update_21.html - Vendor Advisory (CONFIRM) http://googlechromereleases.blogspot.com/2013/02/stable-channel-update_21.html - Release Notes, Vendor Advisory
References (SUSE) http://lists.opensuse.org/opensuse-updates/2013-03/msg00045.html - (SUSE) http://lists.opensuse.org/opensuse-updates/2013-03/msg00045.html - Broken Link, Third Party Advisory
References (CONFIRM) https://code.google.com/p/chromium/issues/detail?id=167840 - (CONFIRM) https://code.google.com/p/chromium/issues/detail?id=167840 - Exploit, Issue Tracking, Mailing List, Vendor Advisory
Information

Published : 2013-02-23 21:55

Updated : 2023-12-10 11:16

NVD link : CVE-2013-0895

Mitre link : CVE-2013-0895

CVE.ORG link : CVE-2013-0895

JSON object : View

Products Affected

linux

  • linux_kernel

microsoft

  • windows

google

  • chrome

apple

  • mac_os_x
CWE
CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')