Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2010-2302
HistoryJun 15, 2010 - 6:00 p.m.

CVE-2010-2302

2010-06-1518:00:02
CWE-416
[email protected]
web.nvd.nist.gov
29
cve-2010-2302
vulnerability
webcore
webkit
google chrome
remote attack
denial of service
memory corruption
arbitrary code
remote fonts
shadow dom trees
rdar problem 8007953

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8.7 High

AI Score

Confidence

High

0.104 Low

EPSS

Percentile

95.0%

JSON

Use-after-free vulnerability in WebCore in WebKit in Google Chrome before 5.0.375.70 allows remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via vectors involving remote fonts in conjunction with shadow DOM trees, aka rdar problem 8007953. NOTE: this might overlap CVE-2010-1771.

Affected configurations

NVD
Node
googlechromeRange<5.0.375.70
Node
opensuseopensuseMatch11.2
OR
opensuseopensuseMatch11.3
OR
susesuse_linux_enterprise_desktopMatch10sp3
OR
susesuse_linux_enterprise_desktopMatch11sp1
OR
susesuse_linux_enterprise_serverMatch10sp3
OR
susesuse_linux_enterprise_serverMatch11sp1
CPENameOperatorVersion
google:chromegoogle chromelt5.0.375.70

Related

ubuntucve 2
prion 2
cvelist 2
nvd 2
debiancve 2
cve 1
openvas 23
nessus 17
freebsd 1
fedora 6
securityvulns 2
ubuntucve
ubuntucve
CVE-2010-2302
2010-06-15 00:00:00
CVE-2010-1771
2010-06-11 00:00:00
prion
prion
Design/Logic Flaw
2010-06-15 18:00:00
Design/Logic Flaw
2010-06-11 19:30:00
cvelist
cvelist
CVE-2010-2302
2010-06-15 17:48:00
CVE-2010-1771
2010-06-11 19:00:00
nvd
nvd
CVE-2010-2302
2010-06-15 18:00:02
CVE-2010-1771
2010-06-11 19:30:23
debiancve
debiancve
CVE-2010-2302
2010-06-15 18:00:00
CVE-2010-1771
2010-06-11 19:30:00
cve
cve
CVE-2010-1771
2010-06-11 19:30:23
openvas
openvas
Google Chrome 'WebKit' Multiple Vulnerabilities (Windows) - June 10
2010-06-22 00:00:00
Google Chrome 'WebKit' Multiple Vulnerabilities (Linux) - Sep 10
2010-10-01 00:00:00
Google Chrome 'WebKit' Multiple Vulnerabilities (Sep 2010) - Linux
2010-10-01 00:00:00
nessus
nessus
Google Chrome < 5.0.375.70 Multiple Vulnerabilities
2010-06-09 00:00:00
FreeBSD : webkit-gtk2 -- Multiple vulnerabilities (19419b3b-92bd-11df-b140-0015f2db7bde)
2010-07-19 00:00:00
openSUSE Security Update : libwebkit (openSUSE-SU-2010:0458-1)
2014-06-13 00:00:00
freebsd
freebsd
webkit-gtk2 -- Multiple vulnerabilities
2010-07-16 00:00:00
fedora
fedora
[SECURITY] Fedora 13 Update: webkitgtk-1.2.4-1.fc13
2010-09-15 05:40:48
[SECURITY] Fedora 12 Update: webkitgtk-1.2.4-1.fc12
2010-09-21 01:43:18
[SECURITY] Fedora 12 Update: webkitgtk-1.2.5-1.fc12
2010-10-19 07:09:06
securityvulns
securityvulns
Apple Webkit / Safari / Google Chrome multiple security vulnerabilities
2010-06-11 00:00:00
VUPEN Security Research - Apple Safari WebKit HTML Button Use-after-free Vulnerability &#40;CVE-2010-1392&#41;
2010-06-08 00:00:00

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8.7 High

AI Score

Confidence

High

0.104 Low

EPSS

Percentile

95.0%

JSON
Related for CVE-2010-2302
ubuntucve2prion2cvelist2nvd2debiancve2cve1openvas23nessus17freebsd1fedora6securityvulns2