Release date:
Updated on: 2013-03-20
Affected Systems:
Google Chrome <= 26.0.1410.28
Description:
--------------------------------------------------------------------------------
Bugtraq id: 58562
CVE (CAN) ID: CVE-2013-2493
Google Chrome Frame is a free plug-in built in Google Chrome. It helps you use new HTML5 network applications in Internet Explorer.
In versions earlier than Google Chrome Frame 26.0.1410.28, The Hook_Terminate function of chrome_frame/protocol_sink_wrap.cc does not properly process additional tab requests, allowing remote attackers to cause Denial-of-Service through the target attribute null value of Element.
<* Source: Google
Link: http://web.nvd.nist.gov/view/vuln/detail? VulnId = CVE-2013-2493
*>
Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
Google
------
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:
Http://www.google.com