Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2013-6650

The StoreBuffer::ExemptPopularPages function in store-buffer.cc in Google V8 before 3.22.24.16, as used in Google Chrome before 32.0.1700.102, allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via vectors that trigger incorrect handling of "popular pages."

Published

2014-01-28T14:30:39.497

Last Modified

2025-04-11T00:51:21.963

Status

Deferred

Source

[email protected]

Severity

CVSSv2: 7.5 (HIGH)

CVSSv2 Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: PARTIAL
Integrity Impact: PARTIAL
Availability Impact: PARTIAL

Exploitability Score

10.0

Impact Score

6.4

Weaknesses

Type: Primary
CWE-20

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	debian	debian_linux	7.0	Yes
Operating System	debian	debian_linux	8.0	Yes
Application	google	chrome	≤ 32.0.1700.101	Yes
Application	google	chrome	32.0.1700.0	Yes
Application	google	chrome	32.0.1700.2	Yes
Application	google	chrome	32.0.1700.3	Yes
Application	google	chrome	32.0.1700.4	Yes
Application	google	chrome	32.0.1700.5	Yes
Application	google	chrome	32.0.1700.6	Yes
Application	google	chrome	32.0.1700.7	Yes
Application	google	chrome	32.0.1700.8	Yes
Application	google	chrome	32.0.1700.9	Yes
Application	google	chrome	32.0.1700.10	Yes
Application	google	chrome	32.0.1700.11	Yes
Application	google	chrome	32.0.1700.12	Yes
Application	google	chrome	32.0.1700.13	Yes
Application	google	chrome	32.0.1700.14	Yes
Application	google	chrome	32.0.1700.15	Yes
Application	google	chrome	32.0.1700.16	Yes
Application	google	chrome	32.0.1700.17	Yes
Application	google	chrome	32.0.1700.18	Yes
Application	google	chrome	32.0.1700.19	Yes
Application	google	chrome	32.0.1700.21	Yes
Application	google	chrome	32.0.1700.22	Yes
Application	google	chrome	32.0.1700.23	Yes
Application	google	chrome	32.0.1700.24	Yes
Application	google	chrome	32.0.1700.26	Yes
Application	google	chrome	32.0.1700.27	Yes
Application	google	chrome	32.0.1700.28	Yes
Application	google	chrome	32.0.1700.29	Yes
Application	google	chrome	32.0.1700.30	Yes
Application	google	chrome	32.0.1700.31	Yes
Application	google	chrome	32.0.1700.32	Yes
Application	google	chrome	32.0.1700.33	Yes
Application	google	chrome	32.0.1700.34	Yes
Application	google	chrome	32.0.1700.35	Yes
Application	google	chrome	32.0.1700.38	Yes
Application	google	chrome	32.0.1700.39	Yes
Application	google	chrome	32.0.1700.41	Yes
Application	google	chrome	32.0.1700.50	Yes
Application	google	chrome	32.0.1700.51	Yes
Application	google	chrome	32.0.1700.52	Yes
Application	google	chrome	32.0.1700.53	Yes
Application	google	chrome	32.0.1700.54	Yes
Application	google	chrome	32.0.1700.55	Yes
Application	google	chrome	32.0.1700.56	Yes
Application	google	chrome	32.0.1700.57	Yes
Application	google	chrome	32.0.1700.58	Yes
Application	google	chrome	32.0.1700.59	Yes
Application	google	chrome	32.0.1700.62	Yes
Application	google	chrome	32.0.1700.63	Yes
Application	google	chrome	32.0.1700.64	Yes
Application	google	chrome	32.0.1700.65	Yes
Application	google	chrome	32.0.1700.66	Yes
Application	google	chrome	32.0.1700.67	Yes
Application	google	chrome	32.0.1700.68	Yes
Application	google	chrome	32.0.1700.69	Yes
Application	google	chrome	32.0.1700.70	Yes
Application	google	chrome	32.0.1700.71	Yes
Application	google	chrome	32.0.1700.72	Yes
Application	google	chrome	32.0.1700.74	Yes
Application	google	chrome	32.0.1700.75	Yes
Application	google	chrome	32.0.1700.76	Yes
Application	google	chrome	32.0.1700.77	Yes
Application	google	chrome	32.0.1700.94	Yes
Application	google	chrome	32.0.1700.95	Yes
Application	google	chrome	32.0.1700.96	Yes
Application	google	chrome	32.0.1700.97	Yes
Application	google	chrome	32.0.1700.98	Yes
Application	google	chrome	32.0.1700.99	Yes
Application	google	chrome	32.0.1700.100	Yes
Operating System	opensuse	opensuse	12.3	Yes
Operating System	opensuse	opensuse	13.1	Yes

References

http://crbug.com/331444 Exploit ([email protected])
http://googlechromereleases.blogspot.com/2014/01/stable-channel-update_27.html Release Notes, Vendor Advisory ([email protected])
http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00008.html Third Party Advisory ([email protected])
http://www.debian.org/security/2014/dsa-2862 Third Party Advisory ([email protected])
https://code.google.com/p/v8/source/detail?r=18483 ([email protected])
http://crbug.com/331444 Exploit (af854a3a-2127-422b-91ae-364da2661108)
http://googlechromereleases.blogspot.com/2014/01/stable-channel-update_27.html Release Notes, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00008.html Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.debian.org/security/2014/dsa-2862 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://code.google.com/p/v8/source/detail?r=18483 (af854a3a-2127-422b-91ae-364da2661108)