Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2010-4574

Опубликовано: 22 дек. 2010
Источник: nvd
CVSS2: 7.5
EPSS Низкий

Описание

The Pickle::Pickle function in base/pickle.cc in Google Chrome before 8.0.552.224 and Chrome OS before 8.0.552.343 on 64-bit Linux platforms does not properly perform pointer arithmetic, which allows remote attackers to bypass message deserialization validation, and cause a denial of service or possibly have unspecified other impact, via invalid pickle data.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одновременно

Одно из

cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
Версия до 8.0.552.224 (исключая)
cpe:2.3:o:google:chrome_os:*:*:*:*:*:*:*:*
Версия до 8.0.552.343 (исключая)
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:x64:*

EPSS

Процентиль: 74%
0.00829
Низкий

7.5 High

CVSS2

Дефекты

CWE-502

Связанные уязвимости

ubuntu логотип

CVE-2010-4574

ubuntu
около 15 лет назад

The Pickle::Pickle function in base/pickle.cc in Google Chrome before 8.0.552.224 and Chrome OS before 8.0.552.343 on 64-bit Linux platforms does not properly perform pointer arithmetic, which allows remote attackers to bypass message deserialization validation, and cause a denial of service or possibly have unspecified other impact, via invalid pickle data.

debian логотип

CVE-2010-4574

debian
около 15 лет назад

The Pickle::Pickle function in base/pickle.cc in Google Chrome before ...

github логотип

GHSA-qp5c-v98v-4g66

github
больше 3 лет назад

The Pickle::Pickle function in base/pickle.cc in Google Chrome before 8.0.552.224 and Chrome OS before 8.0.552.343 on 64-bit Linux platforms does not properly perform pointer arithmetic, which allows remote attackers to bypass message deserialization validation, and cause a denial of service or possibly have unspecified other impact, via invalid pickle data.

EPSS

Процентиль: 74%
0.00829
Низкий

7.5 High

CVSS2

Дефекты

CWE-502