Medium

Denial of Service in Google Chrome XSL implementation

IdentifiersCVE-2012-2825CWE-125

CVE-2012-2825 is a denial-of-service vulnerability in the XSL implementation in Google Chrome before 20.0.1132.43. The issue is described as an incorrect read operation, indicating an out-of-bounds or otherwise invalid read condition in Chrome's handling of XSL content. A remote attacker can trigger the flaw via unspecified vectors, causing the browser process to crash or become unstable. The provided context also states that this exploit was used against default Android browsers on versions 4.0 through 4.3 as part of exploit delivery chains.

For your environment

Are you exposed to this one?

Mallory correlates every CVE against your assets, your vendors, and active adversary campaigns. Know which vulnerabilities matter for you, not just which ones are loud.

Start free trial

ANALYST BRIEF

Impact, mitigation & remediation

What it means. What to do now. Patch path, mitigations, and the assume-compromise checklist.

Impact

What an attacker gets, and what they’ve been doing with it.

Successful exploitation allows a remote attacker to cause denial of service in the affected browser, typically by crashing the process through an incorrect read operation. Based on the provided information, the documented impact is service disruption rather than code execution.

Mitigation

If you can’t patch tonight, do this now.

Until patching is possible, reduce exposure by avoiding untrusted or attacker-controlled websites and limiting use of vulnerable default Android browsers on affected Android 4.0-4.3 devices. Use updated alternative browsers where feasible and restrict access paths that allow users to be lured to malicious sites, such as SMS-based phishing links.

Remediation

Patch, then assume compromise.

Upgrade Google Chrome to version 20.0.1132.43 or later. In the Android context described, move affected devices off vulnerable browser builds by applying the latest available Android/browser updates, since default browsers on Android 4.0 through 4.3 were reported as affected in the exploit chain discussed.

PUBLIC EXPLOITS

Exploits

No public exploits tracked yet. Mallory keeps watching.

VALID 0 / 0 TOTALView more in app

No public exploit code observed for this vulnerability.

EXPOSURE SURFACE

Affected products & vendors

Products and vendors Mallory has correlated with this vulnerability. Open in Mallory to drill down to specific CPE configurations and version ranges.

VendorProductType

GoogleChromeapplication

Vendor-confirmed product mapping. Mallory continuously reconciles this list against your asset inventory.

ACTIVITY FEED

Recent activity

2 sources tracked across advisories, community write-ups, and news. New activity surfaces here as Mallory finds it.

2 SOURCESView more in app

arstechnicaNews

Jul 23, 2015

Advanced spyware for Android now available to script kiddies everywhere - Ars Technica

A known Android default browser vulnerability affecting Android versions 4.0 to 4.3, used by malicious websites as part of RCSAndroid infections.

web archiveNews

Jul 23, 2015

Advanced spyware for Android now available to script kiddies everywhere | Ars Technica

A known Android default browser vulnerability affecting Android versions 4.0 to 4.3, used by Hacking Team's RCSAndroid infection chain via malicious websites.

What this page doesn’t show

The version that knows your environment.

This page is what’s public. Mallory adds the parts that aren’t: which of your assets are affected, which adversaries are exploiting it right now, which detections to deploy, and what to do tonight.

Start free trial

Exposure mapping

Query your assets running an affected version, and investigate the blast radius.

Threat actor evidence2

Every observed campaign linking this CVE to a named adversary.

Associated malware2

Malware families riding this exploit, with evidence and IOCs.

Detection signatures

YARA, Sigma, Snort, and vendor rules, auto-deployed to your SIEM.

Vendor-by-vendor mapping

Cross-references every affected SKU, including bundled OEM variants.

Social activity