Vulnerabilities > CVE-2012-2764 - Unspecified vulnerability in Google Chrome
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Untrusted search path vulnerability in Google Chrome before 20.0.1132.43 on Windows might allow local users to gain privileges via a Trojan horse Metro DLL in the current working directory.
Vulnerable Configurations
Exploit-Db
| description | Google Chrome 19.0.1084.52 'metro_driver.dll' DLL Loading Arbitrary Code Execution Vulnerability. CVE-2012-2764. Remote exploit for windows platform |
| id | EDB-ID:37510 |
| last seen | 2016-02-04 |
| modified | 2012-06-26 |
| published | 2012-06-26 |
| reporter | Moshe Zioni |
| source | https://www.exploit-db.com/download/37510/ |
| title | Google Chrome 19.0.1084.52 - 'metro_driver.dll' DLL Loading Arbitrary Code Execution Vulnerability |
Nessus
| NASL family | Windows |
| NASL id | GOOGLE_CHROME_20_0_1132_43.NASL |
| description | The version of Google Chrome installed on the remote host is earlier than 20.0.1132.43 and is, therefore, affected by the following vulnerabilities : - An error exists related to the loading of the |
| last seen | 2020-06-01 |
| modified | 2020-06-02 |
| plugin id | 59735 |
| published | 2012-06-27 |
| reporter | This script is Copyright (C) 2012-2018 Tenable Network Security, Inc. |
| source | https://www.tenable.com/plugins/nessus/59735 |
| title | Google Chrome < 20.0.1132.43 Multiple Vulnerabilities |
Oval
| accepted | 2013-08-12T04:07:28.995-04:00 | ||||||||||||
| class | vulnerability | ||||||||||||
| contributors |
| ||||||||||||
| definition_extensions |
| ||||||||||||
| description | Untrusted search path vulnerability in Google Chrome before 20.0.1132.43 on Windows might allow local users to gain privileges via a Trojan horse Metro DLL in the current working directory. | ||||||||||||
| family | windows | ||||||||||||
| id | oval:org.mitre.oval:def:15375 | ||||||||||||
| status | accepted | ||||||||||||
| submitted | 2012-06-27T11:45:52.000-04:00 | ||||||||||||
| title | Untrusted search path vulnerability in Google Chrome before 20.0.1132.43 on Windows | ||||||||||||
| version | 44 |
Packetstorm
| data source | https://packetstormsecurity.com/files/download/114779/googlechrome-dllhijack.txt |
| id | PACKETSTORM:114779 |
| last seen | 2016-12-05 |
| published | 2012-07-17 |
| reporter | Moshe Zioni |
| source | https://packetstormsecurity.com/files/114779/Google-Chrome-19-metro_driver.dll-Mishandling.html |
| title | Google Chrome 19 metro_driver.dll Mishandling |
References
- http://code.google.com/p/chromium/issues/detail?id=130276
- http://code.google.com/p/chromium/issues/detail?id=130276
- http://googlechromereleases.blogspot.com/2012/06/stable-channel-update_26.html
- http://googlechromereleases.blogspot.com/2012/06/stable-channel-update_26.html
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15375
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15375