CVE-2010-4041

Опубликовано: 21 окт. 2010

Источник: nvd

CVSS3: 9.8

CVSS2: 7.5

EPSS Низкий

Описание

The sandbox implementation in Google Chrome before 7.0.517.41 on Linux does not properly constrain worker processes, which might allow remote attackers to bypass intended access restrictions via unspecified vectors.

Ссылки

http://code.google.com/p/chromium/issues/detail?id=54794
Issue Tracking
Mailing List
Patch
Vendor Advisory
http://googlechromereleases.blogspot.com/2010/10/stable-channel-update.html
Release Notes
Vendor Advisory
http://secunia.com/advisories/41888
Broken Link
http://www.securityfocus.com/bid/44241
Third Party Advisory
VDB Entry
http://www.vupen.com/english/advisories/2010/2731
Not Applicable
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14201
Third Party Advisory
http://code.google.com/p/chromium/issues/detail?id=54794
Issue Tracking
Mailing List
Patch
Vendor Advisory
http://googlechromereleases.blogspot.com/2010/10/stable-channel-update.html
Release Notes
Vendor Advisory
http://secunia.com/advisories/41888
Broken Link
http://www.securityfocus.com/bid/44241
Third Party Advisory
VDB Entry
http://www.vupen.com/english/advisories/2010/2731
Not Applicable
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14201
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*

Версия до 7.0.517.41 (исключая)

cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*

EPSS

Процентиль: 74%

0.00836

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

CVE-2010-4041

CVSS3: 9.8

ubuntu

больше 15 лет назад

CVE-2010-4041

CVSS3: 9.8

debian

больше 15 лет назад

The sandbox implementation in Google Chrome before 7.0.517.41 on Linux ...

GHSA-9prv-wcwc-55wq

CVSS3: 9.8

github

больше 3 лет назад

EPSS

Процентиль: 74%

0.00836

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

NVD-CWE-noinfo