10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.14 Low
EPSS
Percentile
95.7%
Use-after-free vulnerability in the Element::normalizeAttributes function
in dom/Element.cpp in WebCore in WebKit in Google Chrome before 5.0.375.70
allows remote attackers to execute arbitrary code or cause a denial of
service (memory corruption) via vectors related to handlers for DOM
mutation events, aka rdar problem 7948784. NOTE: this might overlap
CVE-2010-1759.
Author | Note |
---|---|
mdeslaur | webkit is CVE-2010-1759 |