CVE-2012-2857

Published: Aug 6, 2012Modified: Apr 29, 2026

6.8

Vector

AV:N/AC:M/Au:N/C:P/I:P/A:P

Exploitability: 8.6 / Impact: 6.4

Source: NVD

Description

Use-after-free vulnerability in the Cascading Style Sheets (CSS) DOM implementation in Google Chrome before 21.0.1180.57 on Mac OS X and Linux, and before 21.0.1180.60 on Windows and Chrome Frame, allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted document.

Affected (30)

Products: Apple: Iphone Os · Google: Chrome

1 product

1 product

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
Apple Iphone Os	Up to 6.0.2
Apple Iphone Os	Version 6.0.1
Apple Iphone Os	Version 6.0

Configuration B

3 vulnerable · 2 platform

Vulnerable Software	Affected Versions
Google Chrome	Up to 21.0.1180.59
Google Chrome	Version 21.0.1180.56
Google Chrome	Version 21.0.1180.57

Running on/with	Platform Versions
Google Frame	All versions
Microsoft Windows	All versions

Configuration C

24 vulnerable · 2 platform

Vulnerable Software	Affected Versions
Google Chrome	Up to 21.0.1180.56
Google Chrome	Version 21.0.1180.0
Google Chrome	Version 21.0.1180.1
Google Chrome	Version 21.0.1180.2
Google Chrome	Version 21.0.1180.31
Google Chrome	Version 21.0.1180.32
Google Chrome	Version 21.0.1180.33
Google Chrome	Version 21.0.1180.34
Google Chrome	Version 21.0.1180.35
Google Chrome	Version 21.0.1180.36
Google Chrome	Version 21.0.1180.37
Google Chrome	Version 21.0.1180.38
Google Chrome	Version 21.0.1180.39
Google Chrome	Version 21.0.1180.41
Google Chrome	Version 21.0.1180.46
Google Chrome	Version 21.0.1180.47
Google Chrome	Version 21.0.1180.48
Google Chrome	Version 21.0.1180.49
Google Chrome	Version 21.0.1180.50
Google Chrome	Version 21.0.1180.51
Google Chrome	Version 21.0.1180.52
Google Chrome	Version 21.0.1180.53
Google Chrome	Version 21.0.1180.54
Google Chrome	Version 21.0.1180.55