Lucene search

[email protected]CVE-2010-4492

HistoryDec 07, 2010 - 9:00 p.m.

CVE-2010-4492

2010-12-0721:00:09

CWE-416

[email protected]

web.nvd.nist.gov

cve-2010-4492

google chrome

vulnerability

denial of service

remote attackers

svg animations

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

9.2 High

AI Score

Confidence

High

0.023 Low

EPSS

Percentile

89.7%

JSON

Use-after-free vulnerability in Google Chrome before 8.0.552.215 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving SVG animations.

Affected configurations

NVD

Node

googlechromeRange<8.0.552.215

Node

debiandebian_linuxMatch6.0

debiandebian_linuxMatch7.0

CPENameOperatorVersion
google:chromegoogle chromelt8.0.552.215

CPE	Name	Operator	Version
google:chrome	google chrome	lt	8.0.552.215

References

code.google.com/p/chromium/issues/detail?id=62401

googlechromereleases.blogspot.com/2010/12/stable-beta-channel-updates.html

lists.opensuse.org/opensuse-security-announce/2011-05/msg00005.html

secunia.com/advisories/42472

www.debian.org/security/2011/dsa-2188

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11475

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

9.2 High

AI Score

Confidence

High

0.023 Low

EPSS

Percentile

89.7%

JSON

Related for CVE-2010-4492

debiancve1 ubuntucve1 nvd1 cvelist1 prion1 nessus10 openvas13 freebsd1 osv1 debian2 ubuntu1 gentoo1 fedora1