CVE-2012-2764

Google Chrome <20.0.1132.43 - Privilege Escalation

Title source: llm

Description

Untrusted search path vulnerability in Google Chrome before 20.0.1132.43 on Windows might allow local users to gain privileges via a Trojan horse Metro DLL in the current working directory.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Moshe Zioni · cremotewindows

https://www.exploit-db.com/exploits/37510

View Code ZIP pw:eip

References (3)

[Vendor Advisory] http://googlechromereleases.blogspot.com/2012/06/stable-channel-update_26.html

[Third Party Advisory, VDB Entry] https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15375

[Issue Tracking] http://code.google.com/p/chromium/issues/detail?id=130276

Scores

EPSS 0.0046

EPSS Percentile 64.2%

Details

Status published

Products (43)

google/chrome 20.0.1132.0

google/chrome 20.0.1132.1

google/chrome 20.0.1132.2

google/chrome 20.0.1132.3

google/chrome 20.0.1132.4

google/chrome 20.0.1132.5

google/chrome 20.0.1132.6

google/chrome 20.0.1132.7

google/chrome 20.0.1132.8

google/chrome 20.0.1132.9

... and 33 more

Published Jun 27, 2012

Tracked Since Feb 18, 2026