Mend.io Vulnerability Database

What is a CVE vulnerability ID? icon What is a WS vulnerability ID? icon What is an MSC vulnerability ID? icon
New vulnerability? Tell us about it!
icon

We found results for “

CVE-2015-1295

Date: September 3, 2015

Multiple use-after-free vulnerabilities in the PrintWebViewHelper class in components/printing/renderer/print_web_view_helper.cc in Google Chrome before 45.0.2454.85 allow user-assisted remote attackers to cause a denial of service or possibly have unspecified other impact by triggering nested IPC messages during preparation for printing, as demonstrated by messages associated with PDF documents in conjunction with messages about printer capabilities.

Language: C++

Severity Score

Related Resources (12)

http://www.debian.org/security/2015/dsa-3351
http://rhn.redhat.com/errata/RHSA-2015-1712.html
http://www.securitytracker.com/id/1033472
https://code.google.com/p/chromium/issues/detail?id=502562
https://people.canonical.com/~ubuntu-security/cve/CVE-2015-1295
http://googlechromereleases.blogspot.com/2015/09/stable-channel-update.html
https://security.gentoo.org/glsa/201603-09
https://nvd.nist.gov/vuln/detail/CVE-2015-1295
https://codereview.chromium.org/1228693002/
http://lists.opensuse.org/opensuse-updates/2015-11/msg00013.html
http://lists.opensuse.org/opensuse-updates/2015-09/msg00029.html
https://www.mend.io/vulnerability-database/CVE-2015-1295

Severity Score

CVSS v3.1

Base Score:
Attack Vector (AV): NETWORK
Attack Complexity (AC): LOW
Privileges Required (PR): NONE
User Interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality (C): LOW
Integrity (I): LOW
Availability (A): LOW

CVSS v2

Base Score:
Access Vector (AV): NETWORK
Access Complexity (AC): LOW
Authentication (AU): NONE
Confidentiality (C): PARTIAL
Integrity (I): PARTIAL
Availability (A): PARTIAL
Additional information:

Do you need more information?

Contact Us