CVE-2013-6634

EUVD-2013-6436
The OneClickSigninHelper::ShowInfoBarIfPossible function in browser/ui/sync/one_click_signin_helper.cc in Google Chrome before 31.0.1650.63 uses an incorrect URL during realm validation, which allows remote attackers to conduct session fixation attacks and hijack web sessions by triggering improper sync after a 302 (aka Found) HTTP status code.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.8 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 79%
Affected Products (NVD)
VendorProductVersion
googlechrome
𝑥
≤ 31.0.1650.62
googlechrome
31.0.1650.0
googlechrome
31.0.1650.2
googlechrome
31.0.1650.3
googlechrome
31.0.1650.4
googlechrome
31.0.1650.5
googlechrome
31.0.1650.6
googlechrome
31.0.1650.7
googlechrome
31.0.1650.8
googlechrome
31.0.1650.9
googlechrome
31.0.1650.10
googlechrome
31.0.1650.11
googlechrome
31.0.1650.12
googlechrome
31.0.1650.13
googlechrome
31.0.1650.14
googlechrome
31.0.1650.15
googlechrome
31.0.1650.16
googlechrome
31.0.1650.17
googlechrome
31.0.1650.18
googlechrome
31.0.1650.19
googlechrome
31.0.1650.20
googlechrome
31.0.1650.22
googlechrome
31.0.1650.23
googlechrome
31.0.1650.25
googlechrome
31.0.1650.26
googlechrome
31.0.1650.27
googlechrome
31.0.1650.28
googlechrome
31.0.1650.29
googlechrome
31.0.1650.30
googlechrome
31.0.1650.31
googlechrome
31.0.1650.32
googlechrome
31.0.1650.33
googlechrome
31.0.1650.34
googlechrome
31.0.1650.35
googlechrome
31.0.1650.36
googlechrome
31.0.1650.37
googlechrome
31.0.1650.38
googlechrome
31.0.1650.39
googlechrome
31.0.1650.41
googlechrome
31.0.1650.42
googlechrome
31.0.1650.43
googlechrome
31.0.1650.44
googlechrome
31.0.1650.45
googlechrome
31.0.1650.46
googlechrome
31.0.1650.47
googlechrome
31.0.1650.48
googlechrome
31.0.1650.49
googlechrome
31.0.1650.50
googlechrome
31.0.1650.51
googlechrome
31.0.1650.52
googlechrome
31.0.1650.53
googlechrome
31.0.1650.54
googlechrome
31.0.1650.55
googlechrome
31.0.1650.57
googlechrome
31.0.1650.58
googlechrome
31.0.1650.59
googlechrome
31.0.1650.60
googlechrome
31.0.1650.61
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
chromium-browser
lucid
ignored
precise
Fixed 31.0.1650.63-0ubuntu0.12.04.1~20131204.1
released
quantal
Fixed 31.0.1650.63-0ubuntu0.12.10.1~20131204.1
released
raring
Fixed 31.0.1650.63-0ubuntu0.13.04.1~20131204.1
released
saucy
Fixed 31.0.1650.63-0ubuntu0.13.10.1~20131204.1
released
Common Weakness Enumeration
References
http://googlechromereleases.blogspot.com/2013/12/stable-channel-update.html
http://lists.opensuse.org/opensuse-updates/2013-12/msg00090.html
http://lists.opensuse.org/opensuse-updates/2013-12/msg00096.html
http://lists.opensuse.org/opensuse-updates/2014-01/msg00042.html
http://secunia.com/advisories/56217
http://www.debian.org/security/2013/dsa-2811
http://www.securitytracker.com/id/1029442
https://code.google.com/p/chromium/issues/detail?id=307159
https://src.chromium.org/viewvc/chrome?revision=236563&view=revision
http://googlechromereleases.blogspot.com/2013/12/stable-channel-update.html
http://lists.opensuse.org/opensuse-updates/2013-12/msg00090.html
http://lists.opensuse.org/opensuse-updates/2013-12/msg00096.html
http://lists.opensuse.org/opensuse-updates/2014-01/msg00042.html
http://secunia.com/advisories/56217
http://www.debian.org/security/2013/dsa-2811
http://www.securitytracker.com/id/1029442
https://code.google.com/p/chromium/issues/detail?id=307159
https://src.chromium.org/viewvc/chrome?revision=236563&view=revision