Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2010-4206

Опубликовано: 06 нояб. 2010
Источник: nvd
CVSS3: 8.8
CVSS2: 6.8
EPSS Низкий

Описание

Array index error in the FEBlend::apply function in WebCore/platform/graphics/filters/FEBlend.cpp in WebKit, as used in Google Chrome before 7.0.517.44, webkitgtk before 1.2.6, and other products, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted SVG document, related to effects in the application of filters.

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
Версия до 7.0.517.44 (исключая)
Конфигурация 2
cpe:2.3:a:webkitgtk:webkitgtk:*:*:*:*:*:*:*:*
Версия до 1.2.6 (исключая)
Конфигурация 3
cpe:2.3:o:fedoraproject:fedora:13:*:*:*:*:*:*:*

EPSS

Процентиль: 86%
0.02948
Низкий

8.8 High

CVSS3

6.8 Medium

CVSS2

Дефекты

CWE-787

Связанные уязвимости

ubuntu логотип

CVE-2010-4206

CVSS3: 8.8
ubuntu
больше 14 лет назад

Array index error in the FEBlend::apply function in WebCore/platform/graphics/filters/FEBlend.cpp in WebKit, as used in Google Chrome before 7.0.517.44, webkitgtk before 1.2.6, and other products, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted SVG document, related to effects in the application of filters.

redhat логотип

CVE-2010-4206

redhat
больше 14 лет назад

Array index error in the FEBlend::apply function in WebCore/platform/graphics/filters/FEBlend.cpp in WebKit, as used in Google Chrome before 7.0.517.44, webkitgtk before 1.2.6, and other products, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted SVG document, related to effects in the application of filters.

debian логотип

CVE-2010-4206

CVSS3: 8.8
debian
больше 14 лет назад

Array index error in the FEBlend::apply function in WebCore/platform/g ...

github логотип

GHSA-6jhm-3x88-7j24

CVSS3: 8.8
github
около 3 лет назад

Array index error in the FEBlend::apply function in WebCore/platform/graphics/filters/FEBlend.cpp in WebKit, as used in Google Chrome before 7.0.517.44, webkitgtk before 1.2.6, and other products, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted SVG document, related to effects in the application of filters.

oracle-oval логотип

ELSA-2011-0177

oracle-oval
больше 14 лет назад

ELSA-2011-0177: webkitgtk security update (MODERATE)

EPSS

Процентиль: 86%
0.02948
Низкий

8.8 High

CVSS3

6.8 Medium

CVSS2

Дефекты

CWE-787