Lucene search

K

[email protected]CVE-2010-4493

HistoryDec 07, 2010 - 9:00 p.m.

CVE-2010-4493

2010-12-0721:00:00

CWE-416

[email protected]

web.nvd.nist.gov

36

cve-2010-4493

google chrome

vulnerability

denial of service

remote attack

mouse dragging events

8.1 High

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.028 Low

EPSS

Percentile

90.6%

Use-after-free vulnerability in Google Chrome before 8.0.552.215 allows remote attackers to cause a denial of service via vectors related to the handling of mouse dragging events.

CPENameOperatorVersion
google:chromegoogle chromelt8.0.552.215
debian:debian_linuxdebian debian linuxeq7.0
debian:debian_linuxdebian debian linuxeq6.0

References

code.google.com/p/chromium/issues/detail?id=63051

googlechromereleases.blogspot.com/2010/12/stable-beta-channel-updates.html

lists.opensuse.org/opensuse-security-announce/2011-05/msg00005.html

secunia.com/advisories/42472

www.debian.org/security/2011/dsa-2188

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12129

8.1 High

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.028 Low

EPSS

Percentile

90.6%

Related for CVE-2010-4493

debiancve1 ubuntucve1 prion1 nessus9 openvas13 freebsd1 osv1 debian2 ubuntu1 gentoo1 fedora1