Multiple integer overflows in the replace-data functionality in the CharacterData interface implementation in core/dom/CharacterData.cpp in Blink, as used in Google Chrome before 34.0.1847.137, allow remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to ranges.
2014-05-14T11:13:06.007
2025-04-12T10:46:40.837
Deferred
CVSSv2: 7.5 (HIGH)
AV:N/AC:L/Au:N/C:P/I:P/A:P
10.0
6.4
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | chrome | ≤ 34.0.1847.136 | Yes | |
| Application | chrome | 34.0.1847.0 | Yes | |
| Application | chrome | 34.0.1847.1 | Yes | |
| Application | chrome | 34.0.1847.2 | Yes | |
| Application | chrome | 34.0.1847.3 | Yes | |
| Application | chrome | 34.0.1847.4 | Yes | |
| Application | chrome | 34.0.1847.5 | Yes | |
| Application | chrome | 34.0.1847.6 | Yes | |
| Application | chrome | 34.0.1847.7 | Yes | |
| Application | chrome | 34.0.1847.8 | Yes | |
| Application | chrome | 34.0.1847.9 | Yes | |
| Application | chrome | 34.0.1847.10 | Yes | |
| Application | chrome | 34.0.1847.12 | Yes | |
| Application | chrome | 34.0.1847.14 | Yes | |
| Application | chrome | 34.0.1847.15 | Yes | |
| Application | chrome | 34.0.1847.23 | Yes | |
| Application | chrome | 34.0.1847.24 | Yes | |
| Application | chrome | 34.0.1847.25 | Yes | |
| Application | chrome | 34.0.1847.36 | Yes | |
| Application | chrome | 34.0.1847.37 | Yes | |
| Application | chrome | 34.0.1847.38 | Yes | |
| Application | chrome | 34.0.1847.39 | Yes | |
| Application | chrome | 34.0.1847.41 | Yes | |
| Application | chrome | 34.0.1847.42 | Yes | |
| Application | chrome | 34.0.1847.43 | Yes | |
| Application | chrome | 34.0.1847.44 | Yes | |
| Application | chrome | 34.0.1847.45 | Yes | |
| Application | chrome | 34.0.1847.46 | Yes | |
| Application | chrome | 34.0.1847.47 | Yes | |
| Application | chrome | 34.0.1847.48 | Yes | |
| Application | chrome | 34.0.1847.49 | Yes | |
| Application | chrome | 34.0.1847.50 | Yes | |
| Application | chrome | 34.0.1847.51 | Yes | |
| Application | chrome | 34.0.1847.52 | Yes | |
| Application | chrome | 34.0.1847.53 | Yes | |
| Application | chrome | 34.0.1847.54 | Yes | |
| Application | chrome | 34.0.1847.55 | Yes | |
| Application | chrome | 34.0.1847.56 | Yes | |
| Application | chrome | 34.0.1847.57 | Yes | |
| Application | chrome | 34.0.1847.58 | Yes | |
| Application | chrome | 34.0.1847.59 | Yes | |
| Application | chrome | 34.0.1847.60 | Yes | |
| Application | chrome | 34.0.1847.61 | Yes | |
| Application | chrome | 34.0.1847.62 | Yes | |
| Application | chrome | 34.0.1847.63 | Yes | |
| Application | chrome | 34.0.1847.64 | Yes | |
| Application | chrome | 34.0.1847.65 | Yes | |
| Application | chrome | 34.0.1847.66 | Yes | |
| Application | chrome | 34.0.1847.67 | Yes | |
| Application | chrome | 34.0.1847.68 | Yes | |
| Application | chrome | 34.0.1847.69 | Yes | |
| Application | chrome | 34.0.1847.71 | Yes | |
| Application | chrome | 34.0.1847.72 | Yes | |
| Application | chrome | 34.0.1847.73 | Yes | |
| Application | chrome | 34.0.1847.74 | Yes | |
| Application | chrome | 34.0.1847.75 | Yes | |
| Application | chrome | 34.0.1847.76 | Yes | |
| Application | chrome | 34.0.1847.77 | Yes | |
| Application | chrome | 34.0.1847.78 | Yes | |
| Application | chrome | 34.0.1847.79 | Yes | |
| Application | chrome | 34.0.1847.80 | Yes | |
| Application | chrome | 34.0.1847.81 | Yes | |
| Application | chrome | 34.0.1847.82 | Yes | |
| Application | chrome | 34.0.1847.83 | Yes | |
| Application | chrome | 34.0.1847.85 | Yes | |
| Application | chrome | 34.0.1847.86 | Yes | |
| Application | chrome | 34.0.1847.87 | Yes | |
| Application | chrome | 34.0.1847.91 | Yes | |
| Application | chrome | 34.0.1847.92 | Yes | |
| Application | chrome | 34.0.1847.94 | Yes | |
| Application | chrome | 34.0.1847.97 | Yes | |
| Application | chrome | 34.0.1847.98 | Yes | |
| Application | chrome | 34.0.1847.99 | Yes | |
| Application | chrome | 34.0.1847.100 | Yes | |
| Application | chrome | 34.0.1847.101 | Yes | |
| Application | chrome | 34.0.1847.102 | Yes | |
| Application | chrome | 34.0.1847.103 | Yes | |
| Application | chrome | 34.0.1847.104 | Yes | |
| Application | chrome | 34.0.1847.109 | Yes | |
| Application | chrome | 34.0.1847.111 | Yes | |
| Application | chrome | 34.0.1847.112 | Yes | |
| Application | chrome | 34.0.1847.113 | Yes | |
| Application | chrome | 34.0.1847.114 | Yes | |
| Application | chrome | 34.0.1847.115 | Yes | |
| Application | chrome | 34.0.1847.116 | Yes | |
| Application | chrome | 34.0.1847.118 | Yes | |
| Application | chrome | 34.0.1847.120 | Yes | |
| Application | chrome | 34.0.1847.130 | Yes | |
| Application | chrome | 34.0.1847.131 | Yes | |
| Application | chrome | 34.0.1847.132 | Yes | |
| Application | chrome | 34.0.1847.133 | Yes | |
| Application | chrome | 34.0.1847.134 | Yes | |
| Application | chrome | 34.0.1847.135 | Yes |