Details of VAR-201401-0021

ID

VAR-201401-0021

CVE

CVE-2012-2899

TITLE

iOS Run on Google Chrome Vulnerabilities that bypass the same origin policy

Trust: 0.8

sources: JVNDB: JVNDB-2012-006107

DESCRIPTION

Google Chrome before 21.0.1180.82 on iOS makes certain incorrect calls to WebView methods that trigger use of an applewebdata: URL, which allows remote attackers to bypass the Same Origin Policy and conduct Universal XSS (UXSS) attacks via vectors involving the document.write method. Google Chrome for iOS is prone to a cross-domain scripting vulnerability because the application fails to properly enforce the same-origin policy. Successful exploits will allow attackers to execute arbitrary script code within the context of the affected domain. Versions prior to Chrome for iOS 21.0.1180.82 are vulnerable. Google Chrome is a web browser developed by Google (Google). The vulnerability stems from the fact that the program does not call the WebView method correctly

Trust: 1.98

sources: NVD: CVE-2012-2899 // JVNDB: JVNDB-2012-006107 // BID: 64738 // VULHUB: VHN-56180

AFFECTED PRODUCTS

vendor:	google	model:	chrome	scope:	eq	version:	21.0.1180.36	Trust: 1.6
vendor:	google	model:	chrome	scope:	eq	version:	21.0.1180.33	Trust: 1.6
vendor:	google	model:	chrome	scope:	eq	version:	21.0.1180.0	Trust: 1.6
vendor:	google	model:	chrome	scope:	eq	version:	21.0.1180.1	Trust: 1.6
vendor:	google	model:	chrome	scope:	eq	version:	21.0.1180.32	Trust: 1.6
vendor:	google	model:	chrome	scope:	eq	version:	21.0.1180.31	Trust: 1.6
vendor:	google	model:	chrome	scope:	eq	version:	21.0.1180.34	Trust: 1.6
vendor:	google	model:	chrome	scope:	eq	version:	21.0.1180.37	Trust: 1.6
vendor:	google	model:	chrome	scope:	eq	version:	21.0.1180.2	Trust: 1.6
vendor:	google	model:	chrome	scope:	eq	version:	21.0.1180.35	Trust: 1.6
vendor:	google	model:	chrome	scope:	eq	version:	21.0.1180.49	Trust: 1.0
vendor:	google	model:	chrome	scope:	eq	version:	21.0.1180.80	Trust: 1.0
vendor:	google	model:	chrome	scope:	eq	version:	21.0.1180.59	Trust: 1.0
vendor:	google	model:	chrome	scope:	eq	version:	21.0.1180.60	Trust: 1.0
vendor:	google	model:	chrome	scope:	eq	version:	21.0.1180.48	Trust: 1.0
vendor:	google	model:	chrome	scope:	eq	version:	21.0.1180.79	Trust: 1.0
vendor:	google	model:	chrome	scope:	lte	version:	21.0.1180.81	Trust: 1.0
vendor:	google	model:	chrome	scope:	eq	version:	21.0.1180.52	Trust: 1.0
vendor:	google	model:	chrome	scope:	eq	version:	21.0.1180.77	Trust: 1.0
vendor:	google	model:	chrome	scope:	eq	version:	21.0.1180.57	Trust: 1.0
vendor:	google	model:	chrome	scope:	eq	version:	21.0.1180.54	Trust: 1.0
vendor:	google	model:	chrome	scope:	eq	version:	21.0.1180.56	Trust: 1.0
vendor:	google	model:	chrome	scope:	eq	version:	21.0.1180.68	Trust: 1.0
vendor:	google	model:	chrome	scope:	eq	version:	21.0.1180.70	Trust: 1.0
vendor:	google	model:	chrome	scope:	eq	version:	21.0.1180.55	Trust: 1.0
vendor:	google	model:	chrome	scope:	eq	version:	21.0.1180.76	Trust: 1.0
vendor:	google	model:	chrome	scope:	eq	version:	21.0.1180.74	Trust: 1.0
vendor:	google	model:	chrome	scope:	eq	version:	21.0.1180.62	Trust: 1.0
vendor:	google	model:	chrome	scope:	eq	version:	21.0.1180.47	Trust: 1.0
vendor:	google	model:	chrome	scope:	eq	version:	21.0.1180.78	Trust: 1.0
vendor:	google	model:	chrome	scope:	eq	version:	21.0.1180.63	Trust: 1.0
vendor:	google	model:	chrome	scope:	eq	version:	21.0.1180.41	Trust: 1.0
vendor:	google	model:	chrome	scope:	eq	version:	21.0.1180.75	Trust: 1.0
vendor:	google	model:	chrome	scope:	eq	version:	21.0.1180.38	Trust: 1.0
vendor:	google	model:	chrome	scope:	eq	version:	21.0.1180.39	Trust: 1.0
vendor:	google	model:	chrome	scope:	eq	version:	21.0.1180.53	Trust: 1.0
vendor:	google	model:	chrome	scope:	eq	version:	21.0.1180.69	Trust: 1.0
vendor:	google	model:	chrome	scope:	eq	version:	21.0.1180.73	Trust: 1.0
vendor:	google	model:	chrome	scope:	eq	version:	21.0.1180.46	Trust: 1.0
vendor:	google	model:	chrome	scope:	eq	version:	21.0.1180.64	Trust: 1.0
vendor:	google	model:	chrome	scope:	eq	version:	21.0.1180.72	Trust: 1.0
vendor:	google	model:	chrome	scope:	eq	version:	21.0.1180.71	Trust: 1.0
vendor:	google	model:	chrome	scope:	eq	version:	21.0.1180.51	Trust: 1.0
vendor:	google	model:	chrome	scope:	eq	version:	21.0.1180.61	Trust: 1.0
vendor:	google	model:	chrome	scope:	eq	version:	21.0.1180.50	Trust: 1.0
vendor:	google	model:	chrome	scope:	lt	version:	21.0.1180.82 (ipad 2)	Trust: 0.8
vendor:	google	model:	chrome for ios	scope:	eq	version:	21.0.1180.80	Trust: 0.3
vendor:	google	model:	chrome for ios	scope:	ne	version:	21.0.1180.82	Trust: 0.3

sources: BID: 64738 // JVNDB: JVNDB-2012-006107 // CNNVD: CNNVD-201401-051 // NVD: CVE-2012-2899

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2012-2899
value:	MEDIUM
Trust: 1.0
NVD:	CVE-2012-2899
value:	MEDIUM
Trust: 0.8
CNNVD:	CNNVD-201401-051
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-56180
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2012-2899
severity:	MEDIUM
baseScore:	4.3
vectorString:	AV:N/AC:M/AU:N/C:N/I:P/A:N
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	8.6
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
VULHUB:	VHN-56180
severity:	MEDIUM
baseScore:	4.3
vectorString:	AV:N/AC:M/AU:N/C:N/I:P/A:N
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	8.6
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: VULHUB: VHN-56180 // JVNDB: JVNDB-2012-006107 // CNNVD: CNNVD-201401-051 // NVD: CVE-2012-2899

PROBLEMTYPE DATA

problemtype:

CWE-79

Trust: 1.9

sources: VULHUB: VHN-56180 // JVNDB: JVNDB-2012-006107 // NVD: CVE-2012-2899

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201401-051

TYPE

XSS

Trust: 0.6

sources: CNNVD: CNNVD-201401-051

CONFIGURATIONS

sources: JVNDB: JVNDB-2012-006107

PATCH

title:	Issue 147625	url:	https://code.google.com/p/chromium/issues/detail?id=147625	Trust: 0.8
title:	Chrome for iOS Update	url:	http://googlechromereleases.blogspot.jp/2012/09/chrome-for-ios-update_24.html	Trust: 0.8
title:	Google Chrome	url:	http://www.google.co.jp/chrome/intl/ja/landing_ff_yt.html?hl=ja&hl=ja	Trust: 0.8

sources: JVNDB: JVNDB-2012-006107

EXTERNAL IDS

db:	NVD	id:	CVE-2012-2899	Trust: 2.8
db:	JVNDB	id:	JVNDB-2012-006107	Trust: 0.8
db:	CNNVD	id:	CNNVD-201401-051	Trust: 0.7
db:	BID	id:	64738	Trust: 0.4
db:	VULHUB	id:	VHN-56180	Trust: 0.1

sources: VULHUB: VHN-56180 // BID: 64738 // JVNDB: JVNDB-2012-006107 // CNNVD: CNNVD-201401-051 // NVD: CVE-2012-2899

REFERENCES

url:	http://googlechromereleases.blogspot.com/2012/09/chrome-for-ios-update_24.html	Trust: 2.0
url:	https://code.google.com/p/chromium/issues/detail?id=147625	Trust: 2.0
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2012-2899	Trust: 0.8
url:	http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2012-2899	Trust: 0.8
url:	http://www.google.com/chrome	Trust: 0.3

sources: VULHUB: VHN-56180 // BID: 64738 // JVNDB: JVNDB-2012-006107 // CNNVD: CNNVD-201401-051 // NVD: CVE-2012-2899

CREDITS

Lukasz Pilorz

Trust: 0.3

sources: BID: 64738

SOURCES

db:	VULHUB	id:	VHN-56180
db:	BID	id:	64738
db:	JVNDB	id:	JVNDB-2012-006107
db:	CNNVD	id:	CNNVD-201401-051
db:	NVD	id:	CVE-2012-2899

LAST UPDATE DATE

2025-04-11T22:53:09.838000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-56180	date:	2014-01-07T00:00:00
db:	BID	id:	64738	date:	2012-09-24T00:00:00
db:	JVNDB	id:	JVNDB-2012-006107	date:	2014-01-08T00:00:00
db:	CNNVD	id:	CNNVD-201401-051	date:	2014-01-06T00:00:00
db:	NVD	id:	CVE-2012-2899	date:	2025-04-11T00:51:21.963

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-56180	date:	2014-01-05T00:00:00
db:	BID	id:	64738	date:	2012-09-24T00:00:00
db:	JVNDB	id:	JVNDB-2012-006107	date:	2014-01-08T00:00:00
db:	CNNVD	id:	CNNVD-201401-051	date:	2014-01-06T00:00:00
db:	NVD	id:	CVE-2012-2899	date:	2014-01-05T20:55:03.990