CVE-2013-6659
Published Feb 24, 2014
Last updated 11 years ago
Overview
- Description
- The SSLClientSocketNSS::Core::OwnAuthCertHandler function in net/socket/ssl_client_socket_nss.cc in Google Chrome before 33.0.1750.117 does not prevent changes to server X.509 certificates during renegotiations, which allows remote SSL servers to trigger use of a new certificate chain, inconsistent with the user's expectations, by initiating a TLS renegotiation.
- Source
- cve@mitre.org
- NVD status
- Modified
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 6.4
- Impact score
- 4.9
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:P/I:P/A:N
Weaknesses
- nvd@nist.gov
- CWE-310
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2D3666F6-4954-4A0B-ADC3-C9B9285D5BAA",
"versionEndIncluding": "33.0.1750.116"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F6B702C2-083D-46B9-9B31-1D974FBE4190"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5D4C6EAD-1414-4E1A-8535-31D7DE1B1A63"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "16C5F36A-63B5-4DCB-93FC-BEFB31E12689"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F425088C-CC28-41AC-9F14-4A4F6E63B865"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DBF9A555-391F-4F39-A9B2-5C864015256B"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "AA76734E-6604-4CDD-9141-BF0BBE05F736"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A513C8B2-4026-40BF-8770-6AB4550C2352"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "152F7E36-2716-43F4-B251-7195A3206952"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.8:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "157463C3-CB07-41BA-8527-C047E88013A3"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.9:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B5240466-55A1-4767-9BD1-122411EF8C38"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.10:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1E2E4B17-5832-4B49-9CA8-3F92B7AFAE0F"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.11:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "01488955-E181-448B-BD5A-946A66D5493E"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.12:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8BCBFC3C-63F7-4B9B-8D94-7334FB7F0EB4"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.13:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A6C77B47-BD9F-40A9-8482-AA20CA0FA823"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.14:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7FD2BF1C-CFF1-4310-B0B4-A26BFA68868A"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.15:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0F327FEE-5500-4AA3-BEC6-0F625305F2FE"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.16:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7B8CE5AB-7722-4C50-AC11-948C117984C3"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.18:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0B1248F8-FF76-4186-89F3-CBE5696E5347"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.19:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F1EEE80E-73EB-4C22-AE9E-045664FBBE22"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.20:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D2CA2D67-43C1-4438-9C12-452DCC090A08"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.21:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "AAAA310F-8E93-4FC2-8B79-C09F18B25BC6"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.22:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "96FAA317-56CC-42A1-9102-E2BEA4421D88"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.23:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "30AC9E40-5362-4A3A-8EC3-5D99A24FAD38"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.24:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E0C25460-6472-4DE3-BD7A-E47AC0ECB56C"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.25:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "95E2C59C-7399-4347-BC5D-3345A2940E7A"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.26:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9C933326-6E6D-4DE6-9F95-42403901FF99"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.27:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DB6C47B0-BDAC-4C53-B1A7-E580CE7B8F62"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.28:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0D60B297-F755-4FFD-B7C3-E01A164DC0C4"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.29:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D4A8E793-A73E-4255-99E9-4D0BC6E4C0F1"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.30:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2B20DC1B-B8DD-4B52-BA2E-89BC5E993C9F"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.31:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "618FD568-E766-4A36-84B3-D07E92B69ACC"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.34:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1B2AF349-B386-4DA3-8FFB-5ABC92D13FC9"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.35:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A0825DC0-2D08-4552-AA24-D823694DCEB5"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.36:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9086DA40-25B8-409C-8DC5-C501E8F79F87"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.37:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0EBD8A08-F330-42C9-9F48-03D1AFD7A10E"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.38:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2D1117D4-35D8-498C-A2FB-CF28E3CDB3A9"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.39:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1BF13799-F69A-4354-BC3D-737A5F36E3F5"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.40:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "79D398C2-9EED-480C-B32B-705755CEB59B"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.41:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "62405FD2-8482-438B-9C4A-7CDAD2574E41"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.42:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DBD718C6-4FEA-487F-9E8C-4AB3A1838302"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.43:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6445AD42-E14C-4E85-9A42-FD29F5BC30AA"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.44:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9E12FC87-01D1-464D-A311-CC4BB07712F2"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.45:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C4146B78-C168-4567-B6F8-926B337FBF25"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.46:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4BA4EF23-D134-41F1-9649-4D41CB61E5B4"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.47:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A37F46D1-AFBD-4C99-8754-9A7425AD930B"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.48:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "48F5D234-E5A0-4597-8DE1-9444E654B14B"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.49:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "400E408D-80C3-4F5F-90A1-D021737CC56A"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.50:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "EC9E3A9F-21D3-425B-8579-00760123F3EB"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.51:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "004F59DD-8048-43BC-8825-4D16AA3C2A5F"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.52:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "899F83C8-9E62-4F24-B700-6E8923E3CC2B"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.53:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8CB3A7F9-CB39-465F-BDE6-BDA45BFA2C23"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.54:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DEB08D2F-D16B-4EA0-8E93-B2CB029EC615"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.55:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2D8AF8A1-D6C1-41C4-8700-0DE6AE36F580"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.56:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "01417CE6-D5BD-4F21-ACD7-4E043F185CD3"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.57:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "740E7BA5-DB23-4446-AA77-A5D89C1D0D0B"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.58:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1E2FD596-144B-487A-B4D7-757B8C314250"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.59:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4E86041C-5CB9-40A8-916E-45B55A555995"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.60:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C92F9C20-B758-4B96-A828-6DE47E8A829C"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.61:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "89EBAC78-C8F5-4B92-9E59-725E32A5421A"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.62:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "358FFC27-5E22-4CA1-82E7-9D4FA629FE88"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.63:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "910E8BF3-3C9E-41E0-81D1-597FE30C7315"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.64:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D677EA9A-6660-4F50-A2B1-3E2F391920F7"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.65:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "38F4B138-D297-4D13-86A5-35F906447E72"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.66:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1E46BE1B-F522-43F6-9333-702EFF2713D1"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.67:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B8666DC3-7638-4130-9F95-4408DD5F660A"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.68:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E680816E-9641-4E14-8775-35458534E1D0"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.69:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "ABFA742A-50C4-46A9-AAE7-29A642F637A3"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.70:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CC75D010-BC64-440E-A426-DA0117CE6407"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.71:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "03784488-72E5-4E32-B507-89571DE61697"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.73:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4C33E433-14E7-469D-B02F-A3D7DB8C77C4"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.74:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "239D5A00-B33C-4AA1-96F1-AF960928394C"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.75:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D60D8B55-EECB-48D3-BE09-B1964A0D3170"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.76:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4C75D512-48AF-4D74-8644-7EF100D96F47"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.77:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "66E3400D-8A75-45E9-AFDC-366AC0C86323"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.79:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "BF597FC6-FF2F-44C5-9C9C-9E0C4437C66D"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.80:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E9B32192-D874-41C8-B1B9-5C99B12D93B7"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.81:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "57019F85-3B0C-40C5-AEFF-ECE1FFB87DF6"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.82:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B83518FA-7E1C-41A1-BFB1-90CC1955339B"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.83:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "342112D8-CAEF-42FF-8A1D-71391CBD7FB9"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.85:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8B07E8DC-420B-4A8C-B19B-135AEF38B96A"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.88:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8840A482-3305-43DE-812A-72CE1124C718"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.89:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CC532185-B2B9-46C3-9626-FB8C67C8DFB5"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.90:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2EC0ED28-201A-4E21-8864-AC85F3E53F85"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.91:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "61260ECB-4DA8-4313-9077-6F87592EC45A"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.92:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6E03ADCE-5009-4364-9308-18956EE2172F"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.93:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0F9BB86D-B853-4FB6-8CE9-7D30E04E47C9"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.104:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E9EEF2AC-83CE-40AD-820E-CAA669A848F5"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.106:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8479F4C0-1097-4BBB-855E-FBDFD3065482"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.107:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "82A5CAA6-89B4-4C53-BDCC-FA0248262836"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.108:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "EEF184C5-9AA7-4C6A-B9E1-208297A21A38"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.109:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E95FF3AE-1EEC-471F-8927-6C12FA766EB5"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.110:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5A154FBB-A21F-4496-BB35-18845095A657"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.111:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4256B074-FC64-481E-9AA6-19D0A3E469FC"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.112:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DC4CB1AD-C8D7-41EE-BC3A-E66C325F2F26"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.113:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4B3B7E15-A59D-4C01-89EB-13F4639A4BEC"
},
{
"criteria": "cpe:2.3:a:google:chrome:33.0.1750.115:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3A573C2D-81F8-4D2E-8605-F3727FA7C121"
}
],
"operator": "OR"
}
]
}
]