9.3

CVE-2010-0645

Multiple integer overflows in factory.cc in Google V8 before r3560, as used in Google Chrome before 4.0.249.89, allow remote attackers to execute arbitrary code in the Chrome sandbox via crafted use of JavaScript arrays.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
GoogleChrome Version <= 4.0.249.78
GoogleChrome Version0.2.149.27
GoogleChrome Version0.2.149.29
GoogleChrome Version0.2.149.30
GoogleChrome Version0.2.152.1
GoogleChrome Version0.2.153.1
GoogleChrome Version0.3.154.0
GoogleChrome Version0.3.154.3
GoogleChrome Version0.4.154.18
GoogleChrome Version0.4.154.22
GoogleChrome Version0.4.154.31
GoogleChrome Version0.4.154.33
GoogleChrome Version1.0.154.36
GoogleChrome Version1.0.154.39
GoogleChrome Version1.0.154.42
GoogleChrome Version1.0.154.43
GoogleChrome Version1.0.154.46
GoogleChrome Version1.0.154.48
GoogleChrome Version1.0.154.52
GoogleChrome Version1.0.154.53
GoogleChrome Version1.0.154.59
GoogleChrome Version1.0.154.65
GoogleChrome Version2.0.156.1
GoogleChrome Version2.0.157.0
GoogleChrome Version2.0.157.2
GoogleChrome Version2.0.158.0
GoogleChrome Version2.0.159.0
GoogleChrome Version2.0.169.0
GoogleChrome Version2.0.169.1
GoogleChrome Version2.0.170.0
GoogleChrome Version2.0.172
GoogleChrome Version2.0.172.2
GoogleChrome Version2.0.172.8
GoogleChrome Version2.0.172.27
GoogleChrome Version2.0.172.28
GoogleChrome Version2.0.172.30
GoogleChrome Version2.0.172.31
GoogleChrome Version2.0.172.33
GoogleChrome Version2.0.172.37
GoogleChrome Version2.0.172.38
GoogleChrome Version3.0.182.2
GoogleChrome Version3.0.190.2
GoogleChrome Version3.0.193.2 Updatebeta
GoogleChrome Version3.0.195.21
GoogleChrome Version3.0.195.24
GoogleChrome Version3.0.195.32
GoogleChrome Version3.0.195.33
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 3.29% 0.869
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 9.3 8.6 10
AV:N/AC:M/Au:N/C:C/I:C/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://googlechromereleases.blogspot.com/2010/02/stable-channel-update.html
Patch
http://secunia.com/advisories/38545
Vendor Advisory
http://securitytracker.com/id?1023583
http://sites.google.com/a/chromium.org/dev/Home/chromium-security/chromium-security-bugs
Vendor Advisory
http://www.securityfocus.com/bid/38177
http://www.vupen.com/english/advisories/2010/0361
Vendor Advisory
http://code.google.com/p/chromium/issues/detail?id=31009
http://code.google.com/p/v8/source/detail?r=3560
http://codereview.chromium.org/525064
http://www.osvdb.org/62316
https://exchange.xforce.ibmcloud.com/vulnerabilities/56213
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14508