Denial of Service Vulnerability in Google Chrome's V8 Engine
CVE-2013-6639

Currently unrated

Key Information:

Vendor: Google
Status: Chrome; V8
Vendor: CVE Published:; 7 December 2013

What is CVE-2013-6639?

The DehoistArrayIndex function in the V8 JavaScript engine used by Google Chrome can be exploited by attackers to create a denial of service condition. This vulnerability occurs when a malicious JavaScript code sets the value of an array element with an improperly crafted index, leading to unexpected behaviors or crashes. Users of affected versions are urged to update to mitigate the risk of exploitation.

References

http://code.google.com/p/v8/source/detail?r=17801

x_refsource_CONFIRM

http://secunia.com/advisories/56217

third-party-advisoryx_refsource_SECUNIA

http://lists.opensuse.org/opensuse-updates/2013-12/msg001...

vendor-advisoryx_refsource_SUSE

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 7, 2013
Vulnerability Reserved
Nov 5, 2013