CVE-2014-3196

Published: Oct 8, 2014Modified: May 6, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

base/memory/shared_memory_win.cc in Google Chrome before 38.0.2125.101 on Windows does not properly implement read-only restrictions on shared memory, which allows attackers to bypass a sandbox protection mechanism via unspecified vectors.

Affected (1)

Products: Google: Chrome

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Google Chrome	Up to 38.0.2125.7

Related CWEs

References (10)

http://googlechromereleases.blogspot.com/2014/10/stable-channel-update.html

Source: chrome-cve-admin@google.com

http://www.securityfocus.com/bid/70273

Source: chrome-cve-admin@google.com

https://crbug.com/338538

Source: chrome-cve-admin@google.com

https://src.chromium.org/viewvc/chrome?revision=285195&view=revision

Source: chrome-cve-admin@google.com

https://src.chromium.org/viewvc/chrome?revision=288152&view=revision

Source: chrome-cve-admin@google.com

http://googlechromereleases.blogspot.com/2014/10/stable-channel-update.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/70273

Source: af854a3a-2127-422b-91ae-364da2661108

https://crbug.com/338538

Source: af854a3a-2127-422b-91ae-364da2661108

https://src.chromium.org/viewvc/chrome?revision=285195&view=revision

Source: af854a3a-2127-422b-91ae-364da2661108

https://src.chromium.org/viewvc/chrome?revision=288152&view=revision

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.