Signature Detail
Short Name |
HTTP:STC:CHROME:RANGE-BLUR-MC |
|---|---|
Severity |
High |
Recommended |
Yes |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
Google Chrome Selection In Mutation Event Handler Use After Free |
Release Date |
2013/11/18 |
Update Number |
2320 |
Supported Platforms |
idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
HTTP: Google Chrome Selection In Mutation Event Handler Use After Free
This signature detects attempts to exploit a known vulnerability in the Google Chrome Web Browser. A successful attack can lead to a memory corruption and arbitrary remote code execution within the context of the user.
Extended Description
Use-after-free vulnerability in core/dom/ContainerNode.cpp in Blink, as used in Google Chrome before 31.0.1650.48, allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging improper handling of DOM range objects in circumstances that require child node removal after a (1) mutation or (2) blur event.
Affected Products
- google chrome 31.0.1650.0
- google chrome 31.0.1650.10
- google chrome 31.0.1650.11
- google chrome 31.0.1650.12
- google chrome 31.0.1650.13
- google chrome 31.0.1650.14
- google chrome 31.0.1650.15
- google chrome 31.0.1650.16
- google chrome 31.0.1650.17
- google chrome 31.0.1650.18
- google chrome 31.0.1650.19
- google chrome 31.0.1650.2
- google chrome 31.0.1650.20
- google chrome 31.0.1650.22
- google chrome 31.0.1650.23
- google chrome 31.0.1650.25
- google chrome 31.0.1650.26
- google chrome 31.0.1650.27
- google chrome 31.0.1650.28
- google chrome 31.0.1650.29
- google chrome 31.0.1650.3
- google chrome 31.0.1650.30
- google chrome 31.0.1650.31
- google chrome 31.0.1650.32
- google chrome 31.0.1650.33
- google chrome 31.0.1650.34
- google chrome 31.0.1650.35
- google chrome 31.0.1650.36
- google chrome 31.0.1650.37
- google chrome 31.0.1650.38
- google chrome 31.0.1650.39
- google chrome 31.0.1650.4
- google chrome 31.0.1650.41
- google chrome 31.0.1650.42
- google chrome 31.0.1650.43
- google chrome 31.0.1650.44
- google chrome 31.0.1650.45
- google chrome 31.0.1650.46
- google chrome 31.0.1650.5
- google chrome 31.0.1650.6
- google chrome 31.0.1650.7
- google chrome 31.0.1650.8
- google chrome 31.0.1650.9
- google chrome up to 31.0.1650.47
References
- CVE: CVE-2013-6625