Lucene search

[email protected]CVE-2010-3255

HistorySep 07, 2010 - 6:00 p.m.

CVE-2010-3255

2010-09-0718:00:02

CWE-119

[email protected]

web.nvd.nist.gov

cve-2010-3255

google chrome

webkitgtk

memory corruption

denial of service

nvd

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

9.5

Confidence

High

EPSS

0.028

Percentile

90.7%

JSON

Google Chrome before 6.0.472.53 and webkitgtk before 1.2.6 do not properly handle counter nodes, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors.

Affected configurations

NVD

Node

googlechromeRange<6.0.472.53

Node

webkitgtkwebkitgtkRange<1.2.6

References

code.google.com/p/chromium/issues/detail?id=51653

googlechromereleases.blogspot.com/2010/09/stable-and-beta-channel-updates.html

secunia.com/advisories/43086

www.mandriva.com/security/advisories?name=MDVSA-2011:039

www.redhat.com/support/errata/RHSA-2011-0177.html

www.vupen.com/english/advisories/2011/0216

www.vupen.com/english/advisories/2011/0552

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11736

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

9.5

Confidence

High

EPSS

0.028

Percentile

90.7%

JSON

Related for CVE-2010-3255

prion1 debiancve1 cvelist1 nvd1 veracode1 ubuntucve1 freebsd1 nessus7 openvas16 redhat1 oraclelinux1 fedora2 gentoo1