Lucene search
MitreCVE-2010-1665HistoryMay 03, 2010 - 1:51 p.m.
CVE-2010-1665
2010-05-0313:51:53
CWE-119
mitre
web.nvd.nist.gov
35
cve-2010-1665
google chrome
font handling
vulnerability
denial of service
memory corruption
nvd
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.6
Confidence
High
EPSS
0.02
Percentile
89.0%
Google Chrome before 4.1.249.1064 does not properly handle fonts, which allows remote attackers to cause a denial of service (memory corruption) and possibly have unspecified other impact via unknown vectors.
Affected configurations
Node
googlechromeRange≤4.1.249.1063
ORgooglechromeMatch0.2.149.27
ORgooglechromeMatch0.2.149.29
ORgooglechromeMatch0.2.149.30
ORgooglechromeMatch0.2.152.1
ORgooglechromeMatch0.2.153.1
ORgooglechromeMatch0.3.154.0
ORgooglechromeMatch0.3.154.3
ORgooglechromeMatch0.4.154.18
ORgooglechromeMatch0.4.154.22
ORgooglechromeMatch0.4.154.31
ORgooglechromeMatch0.4.154.33
ORgooglechromeMatch1.0.154.36
ORgooglechromeMatch1.0.154.39
ORgooglechromeMatch1.0.154.42
ORgooglechromeMatch1.0.154.43
ORgooglechromeMatch1.0.154.46
ORgooglechromeMatch1.0.154.48
ORgooglechromeMatch1.0.154.52
ORgooglechromeMatch1.0.154.53
ORgooglechromeMatch1.0.154.59
ORgooglechromeMatch1.0.154.64
ORgooglechromeMatch1.0.154.65
ORgooglechromeMatch2.0.156.1
ORgooglechromeMatch2.0.157.0
ORgooglechromeMatch2.0.157.2
ORgooglechromeMatch2.0.158.0
ORgooglechromeMatch2.0.159.0
ORgooglechromeMatch2.0.169.0
ORgooglechromeMatch2.0.169.1
ORgooglechromeMatch2.0.170.0
ORgooglechromeMatch2.0.172
ORgooglechromeMatch2.0.172.2
ORgooglechromeMatch2.0.172.8
ORgooglechromeMatch2.0.172.27
ORgooglechromeMatch2.0.172.28
ORgooglechromeMatch2.0.172.30
ORgooglechromeMatch2.0.172.31
ORgooglechromeMatch2.0.172.33
ORgooglechromeMatch2.0.172.37
ORgooglechromeMatch2.0.172.38
ORgooglechromeMatch3.0.182.2
ORgooglechromeMatch3.0.190.2
ORgooglechromeMatch3.0.193.2beta
ORgooglechromeMatch3.0.195.2
ORgooglechromeMatch3.0.195.21
ORgooglechromeMatch3.0.195.24
ORgooglechromeMatch3.0.195.25
ORgooglechromeMatch3.0.195.27
ORgooglechromeMatch3.0.195.32
ORgooglechromeMatch3.0.195.33
ORgooglechromeMatch3.0.195.36
ORgooglechromeMatch3.0.195.37
ORgooglechromeMatch3.0.195.38
ORgooglechromeMatch4.1beta
ORgooglechromeMatch4.1.249.0
ORgooglechromeMatch4.1.249.1001
ORgooglechromeMatch4.1.249.1004
ORgooglechromeMatch4.1.249.1006
ORgooglechromeMatch4.1.249.1007
ORgooglechromeMatch4.1.249.1008
ORgooglechromeMatch4.1.249.1009
ORgooglechromeMatch4.1.249.1010
ORgooglechromeMatch4.1.249.1011
ORgooglechromeMatch4.1.249.1012
ORgooglechromeMatch4.1.249.1013
ORgooglechromeMatch4.1.249.1014
ORgooglechromeMatch4.1.249.1015
ORgooglechromeMatch4.1.249.1016
ORgooglechromeMatch4.1.249.1017
ORgooglechromeMatch4.1.249.1018
ORgooglechromeMatch4.1.249.1019
ORgooglechromeMatch4.1.249.1020
ORgooglechromeMatch4.1.249.1021
ORgooglechromeMatch4.1.249.1022
ORgooglechromeMatch4.1.249.1023
ORgooglechromeMatch4.1.249.1024
ORgooglechromeMatch4.1.249.1025
ORgooglechromeMatch4.1.249.1026
ORgooglechromeMatch4.1.249.1027
ORgooglechromeMatch4.1.249.1028
ORgooglechromeMatch4.1.249.1029
ORgooglechromeMatch4.1.249.1030
ORgooglechromeMatch4.1.249.1031
ORgooglechromeMatch4.1.249.1032
ORgooglechromeMatch4.1.249.1033
ORgooglechromeMatch4.1.249.1034
ORgooglechromeMatch4.1.249.1035
ORgooglechromeMatch4.1.249.1036
ORgooglechromeMatch4.1.249.1042
ORgooglechromeMatch4.1.249.1045
ORgooglechromeMatch4.1.249.1046
ORgooglechromeMatch4.1.249.1047
ORgooglechromeMatch4.1.249.1048
ORgooglechromeMatch4.1.249.1049
ORgooglechromeMatch4.1.249.1050
ORgooglechromeMatch4.1.249.1051
ORgooglechromeMatch4.1.249.1052
ORgooglechromeMatch4.1.249.1053
ORgooglechromeMatch4.1.249.1054
ORgooglechromeMatch4.1.249.1055
ORgooglechromeMatch4.1.249.1056
ORgooglechromeMatch4.1.249.1057
ORgooglechromeMatch4.1.249.1058
ORgooglechromeMatch4.1.249.1059
ORgooglechromeMatch4.1.249.1060
ORgooglechromeMatch4.1.249.1061
ORgooglechromeMatch4.1.249.1062
| Vendor | Product | Version | CPE |
|---|---|---|---|
| chrome | * | cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:* | |
| chrome | 0.2.149.27 | cpe:2.3:a:google:chrome:0.2.149.27:*:*:*:*:*:*:* | |
| chrome | 0.2.149.29 | cpe:2.3:a:google:chrome:0.2.149.29:*:*:*:*:*:*:* | |
| chrome | 0.2.149.30 | cpe:2.3:a:google:chrome:0.2.149.30:*:*:*:*:*:*:* | |
| chrome | 0.2.152.1 | cpe:2.3:a:google:chrome:0.2.152.1:*:*:*:*:*:*:* | |
| chrome | 0.2.153.1 | cpe:2.3:a:google:chrome:0.2.153.1:*:*:*:*:*:*:* | |
| chrome | 0.3.154.0 | cpe:2.3:a:google:chrome:0.3.154.0:*:*:*:*:*:*:* | |
| chrome | 0.3.154.3 | cpe:2.3:a:google:chrome:0.3.154.3:*:*:*:*:*:*:* | |
| chrome | 0.4.154.18 | cpe:2.3:a:google:chrome:0.4.154.18:*:*:*:*:*:*:* | |
| chrome | 0.4.154.22 | cpe:2.3:a:google:chrome:0.4.154.22:*:*:*:*:*:*:* |
References
code.google.com/p/chromium/issues/detail?id=42294
googlechromereleases.blogspot.com/2010/04/stable-update-bug-and-security-fixes.html
secunia.com/advisories/39651
secunia.com/advisories/41856
www.mandriva.com/security/advisories?name=MDVSA-2011:039
www.ubuntu.com/usn/USN-1006-1
www.vupen.com/english/advisories/2010/1016
www.vupen.com/english/advisories/2010/2722
www.vupen.com/english/advisories/2011/0552
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7034
Related
ubuntucve
ubuntucve
CVE-2010-1665
2010-05-03 00:00:00
debiancve
debiancve
CVE-2010-1665
2010-05-03 13:51:00
cvelist
cvelist
CVE-2010-1665
2010-04-30 17:00:00
nvd
nvd
CVE-2010-1665
2010-05-03 13:51:53
prion
prion
Memory corruption
2010-05-03 13:51:00
openvas
openvas
Google Chrome Multiple Vulnerabilities Windows (May 2010)
2010-05-07 00:00:00
Google Chrome Multiple Vulnerabilities Windows - May10
2010-05-07 00:00:00
FreeBSD Ports: webkit-gtk2
2010-07-22 00:00:00
nessus
nessus
Google Chrome < 4.1.249.1064 Multiple Vulnerabilities
2010-04-28 00:00:00
openSUSE Security Update : libwebkit (openSUSE-SU-2010:0458-1)
2014-06-13 00:00:00
freebsd
freebsd
webkit-gtk2 -- Multiple vulnerabilities
2010-07-16 00:00:00
fedora
fedora
[SECURITY] Fedora 13 Update: webkitgtk-1.2.4-1.fc13
2010-09-15 05:40:48
[SECURITY] Fedora 12 Update: webkitgtk-1.2.4-1.fc12
2010-09-21 01:43:18
[SECURITY] Fedora 13 Update: webkitgtk-1.2.5-1.fc13
2010-10-19 07:21:56
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.6
Confidence
High
EPSS
0.02
Percentile
89.0%
Related for CVE-2010-1665