Endpoint Vulnerability

Security Vulnerability CVE-2013-2905 for Google Chrome

Description

The SharedMemory::Create function in memory/shared_memory_posix.cc in Google Chrome before 29.0.1547.57 uses weak permissions under /dev/shm/, which allows attackers to obtain sensitive information via direct access to a POSIX shared-memory file.

Affected Products

Google Chrome

References

CVE-2013-2905,