8.8

CVE-2010-1772

Exploit
Use-after-free vulnerability in page/Geolocation.cpp in WebCore in WebKit before r59859, as used in Google Chrome before 5.0.375.70, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted web site, related to failure to stop timers associated with geolocation upon deletion of a document.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
GoogleChrome Version < 5.0.375.70
RedhatEnterprise Linux Version6.0
CanonicalUbuntu Linux Version9.10
CanonicalUbuntu Linux Version10.04 SwEdition-
CanonicalUbuntu Linux Version10.10
OpensuseOpensuse Version11.2
OpensuseOpensuse Version11.3
FedoraprojectFedora Version12
FedoraprojectFedora Version13
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1.97% 0.778
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 8.8 2.8 5.9
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
nvd@nist.gov 6.8 8.6 6.4
AV:N/AC:M/Au:N/C:P/I:P/A:P
CWE-416 Use After Free

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html
Third Party Advisory
Mailing List
http://secunia.com/advisories/43068
Broken Link
http://www.vupen.com/english/advisories/2011/0212
Broken Link
http://secunia.com/advisories/41856
Broken Link
http://www.mandriva.com/security/advisories?name=MDVSA-2011:039
Broken Link
http://www.ubuntu.com/usn/USN-1006-1
Third Party Advisory
http://www.vupen.com/english/advisories/2010/2722
Broken Link
http://www.vupen.com/english/advisories/2011/0552
Broken Link
http://lists.fedoraproject.org/pipermail/package-announce/2010-July/044023.html
Third Party Advisory
Mailing List
http://lists.fedoraproject.org/pipermail/package-announce/2010-July/044031.html
Third Party Advisory
Mailing List
http://secunia.com/advisories/40557
Broken Link
http://www.vupen.com/english/advisories/2010/1801
Broken Link
http://googlechromereleases.blogspot.com/2010/06/stable-channel-update.html
Release Notes
http://secunia.com/advisories/40072
Broken Link
http://code.google.com/p/chromium/issues/detail?id=44868
Exploit
Mailing List
Issue Tracking
http://trac.webkit.org/changeset/59859
Patch
Mailing List
https://bugs.webkit.org/show_bug.cgi?id=39388
Vendor Advisory
Permissions Required
https://bugzilla.redhat.com/show_bug.cgi?id=596498
Patch
Third Party Advisory
Issue Tracking
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11661
Third Party Advisory
Broken Link