CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
EPSS
Percentile
92.8%
Multiple integer overflows in factory.cc in Google V8 before r3560, as used
in Google Chrome before 4.0.249.89, allow remote attackers to execute
arbitrary code in the Chrome sandbox via crafted use of JavaScript arrays.
Author | Note |
---|---|
mdeslaur | fixed in v8 r3560 |