Denial of Service and Type Confusion Vulnerability in SVGAnimateElement::calculateAnimatedValue Function

Denial of Service and Type Confusion Vulnerability in SVGAnimateElement::calculateAnimatedValue Function

CVE-2013-6654 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

The SVGAnimateElement::calculateAnimatedValue function in core/svg/SVGAnimateElement.cpp in Blink, as used in Google Chrome before 33.0.1750.117, does not properly handle unexpected data types, which allows remote attackers to cause a denial of service (incorrect cast) or possibly have unspecified other impact via unknown vectors.

Learn more about our Cis Benchmark Audit For Google Chrome.