Lucene search

K

[email protected]NVD:CVE-2009-2955

HistoryAug 24, 2009 - 3:30 p.m.

CVE-2009-2955

2009-08-2415:30:00

CWE-20

[email protected]

web.nvd.nist.gov

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.4 Medium

AI Score

Confidence

Low

0.026 Low

EPSS

Percentile

90.3%

Google Chrome 1.0.154.48 and earlier allows remote attackers to cause a denial of service (CPU consumption and application hang) via JavaScript code with a long string value for the hash property (aka location.hash), a related issue to CVE-2008-5715.

Affected configurations

NVD

Node

googlechromeRange≤1.0.154.48

OR

googlechromeMatch0.2.149.27

OR

googlechromeMatch0.2.149.29

OR

googlechromeMatch0.2.149.30

OR

googlechromeMatch0.2.152.1

OR

googlechromeMatch0.2.153.1

OR

googlechromeMatch0.3.154.0

OR

googlechromeMatch0.3.154.3

OR

googlechromeMatch0.4.154.18

OR

googlechromeMatch0.4.154.22

OR

googlechromeMatch0.4.154.31

OR

googlechromeMatch0.4.154.33

OR

googlechromeMatch1.0.154.36

OR

googlechromeMatch1.0.154.39

OR

googlechromeMatch1.0.154.42

OR

googlechromeMatch1.0.154.43

OR

googlechromeMatch1.0.154.46

References

websecurity.com.ua/3424/

www.securityfocus.com/archive/1/506006/100/0/threaded

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.4 Medium

AI Score

Confidence

Low

0.026 Low

EPSS

Percentile

90.3%

Related for NVD:CVE-2009-2955

debiancve1 cvelist4 cve4 prion4 openvas4 ubuntucve2 seebug1 redhatcve1 nvd3