CVE-2013-6668 — HIGH (7.5) — White Hats Nepal

Q: How severe is CVE-2013-6668?

CVE-2013-6668 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2013-6668?

Check the references section above for vendor advisories and patch information. Affected products include: Google Chrome, Google V8, Nodejs Node.Js, Debian Debian Linux.

Vulnerability Description

Multiple unspecified vulnerabilities in Google V8 before 3.24.35.10, as used in Google Chrome before 33.0.1750.146, allow attackers to cause a denial of service or possibly have other impact via unknown vectors.

CVSS Score

7.5

HIGH

AV:N/AC:L/Au:N/C:P/I:P/A:P

Confidentiality

PARTIAL

Integrity

PARTIAL

Availability

PARTIAL

Affected Products

Vendor	Product	Versions
Google	Chrome	<= 33.0.1750.144
Google	V8	<= 3.24.35
Nodejs	Node.Js	>= 0.10.0, < 0.10.31
Debian	Debian Linux	7.0

References

http://advisories.mageia.org/MGASA-2014-0516.htmlThird Party Advisory
http://googlechromereleases.blogspot.com/2014/03/stable-channel-update.htmlVendor Advisory
http://secunia.com/advisories/61184Third Party Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg21683389Third Party Advisory
http://www.debian.org/security/2014/dsa-2883Third Party Advisory
http://www.mandriva.com/security/advisories?name=MDVSA-2015:142Third Party Advisory
http://www.securityfocus.com/bid/65930Third Party AdvisoryVDB Entry
https://code.google.com/p/chromium/issues/detail?id=343964Issue TrackingVendor Advisory
https://code.google.com/p/chromium/issues/detail?id=344186Issue TrackingVendor Advisory
https://code.google.com/p/chromium/issues/detail?id=347909Issue TrackingVendor Advisory
https://code.google.com/p/v8/source/detail?r=19475Vendor Advisory
https://code.google.com/p/v8/source/detail?r=19553Vendor Advisory
https://code.google.com/p/v8/source/detail?r=19599Vendor Advisory
http://advisories.mageia.org/MGASA-2014-0516.htmlThird Party Advisory
http://googlechromereleases.blogspot.com/2014/03/stable-channel-update.htmlVendor Advisory

FAQ

What is CVE-2013-6668?

CVE-2013-6668 is a vulnerability with a CVSS score of 7.5 (HIGH). Multiple unspecified vulnerabilities in Google V8 before 3.24.35.10, as used in Google Chrome before 33.0.1750.146, allow attackers to cause a denial of service or possibly have other impact via unkno...

How severe is CVE-2013-6668?

CVE-2013-6668 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2013-6668?

Check the references section above for vendor advisories and patch information. Affected products include: Google Chrome, Google V8, Nodejs Node.Js, Debian Debian Linux.