CVE-2010-4577

CVSS V2 Medium 5 CVSS V3 None
Description
The CSSParser::parseFontFaceSrc function in WebCore/css/CSSParser.cpp in WebKit, as used in Google Chrome before 8.0.552.224, Chrome OS before 8.0.552.343, webkitgtk before 1.2.6, and other products does not properly parse Cascading Style Sheets (CSS) token sequences, which allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted local font, related to "Type Confusion."
Overview
  • CVE ID
  • CVE-2010-4577
  • Assigner
  • cve@mitre.org
  • Vulnerability Status
  • Analyzed
  • Published Version
  • 2010-12-22T01:00:03
  • Last Modified Date
  • 2020-07-31T18:39:45
Weakness Enumerations
CWE URL
CWE-125 http://cwe.mitre.org/data/definitions/125.html
CPE Configuration (Product)
CPE Vulnerable Operator Version Start Version End
cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:* 1 OR 8.0.552.224
cpe:2.3:a:webkitgtk:webkitgtk:*:*:*:*:*:*:*:* 1 OR 1.2.6
cpe:2.3:o:google:chrome_os:*:*:*:*:*:*:*:* 1 OR 8.0.552.343
cpe:2.3:o:fedoraproject:fedora:13:*:*:*:*:*:*:* 1 OR
cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:* 1 OR
cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:* 1 OR
CVSS Version 2
  • Version
  • 2.0
  • Vector String
  • AV:N/AC:L/Au:N/C:N/I:N/A:P
  • Access Vector
  • NETWORK
  • Access Compatibility
  • LOW
  • Authentication
  • NONE
  • Confidentiality Impact
  • NONE
  • Integrity Impact
  • NONE
  • Availability Impact
  • PARTIAL
  • Base Score
  • 5
  • Severity
  • MEDIUM
  • Exploitability Score
  • 10
  • Impact Score
  • 2.9
References
Reference URL Reference Tags
http://googlechromereleases.blogspot.com/2010/12/stable-beta-channel-updates_13.html Vendor Advisory
http://code.google.com/p/chromium/issues/detail?id=63866 Exploit Patch Vendor Advisory
http://www.gentoo.org/security/en/glsa/glsa-201012-01.xml Third Party Advisory
http://secunia.com/advisories/42648 Third Party Advisory
http://trac.webkit.org/changeset/72685/trunk/WebCore/css/CSSParser.cpp Patch Third Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2011-January/052906.html Third Party Advisory
http://trac.webkit.org/changeset/72685 Patch Third Party Advisory
https://bugs.webkit.org/show_bug.cgi?id=49883 Permissions Required
https://bugzilla.redhat.com/show_bug.cgi?id=667025 Issue Tracking Third Party Advisory
http://www.securityfocus.com/bid/45722 Third Party Advisory VDB Entry
http://www.redhat.com/support/errata/RHSA-2011-0177.html Third Party Advisory
http://secunia.com/advisories/43086 Third Party Advisory
http://www.vupen.com/english/advisories/2011/0216 Third Party Advisory
http://www.debian.org/security/2011/dsa-2188 Third Party Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13953 Third Party Advisory
Sources
Source Name Source URL
NIST https://nvd.nist.gov/vuln/detail/CVE-2010-4577
MITRE https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4577
History
Created Old Value New Value Data Type Notes
2022-05-10 17:27:23 Added to TrackCVE