CVE-2010-0655
published 2010-02-18CVE-2010-0655: Use-after-free vulnerability in Google Chrome before 4.0.249.78 allows user-assisted remote attackers to cause a denial of service (application crash) or…
PriorityP341critical9.3CVSS 2.0
AVNACMAuNCCICAC
EXPLOIT
EPSS
7.46%
93.7th percentile
Use-after-free vulnerability in Google Chrome before 4.0.249.78 allows user-assisted remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via vectors involving the display of a blocked popup window during navigation to a different web site.
Affected
47 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| chrome | <= 4.0.249.78 | — | |
| chrome | — | — | |
| chrome | — | — | |
| chrome | — | — | |
| chrome | — | — | |
| chrome | — | — | |
| chrome | — | — | |
| chrome | — | — | |
| chrome | — | — | |
| chrome | — | — | |
| chrome | — | — | |
| chrome | — | — | |
| chrome | — | — | |
| chrome | — | — | |
| chrome | — | — | |
| chrome | — | — | |
| chrome | — | — | |
| chrome | — | — | |
| chrome | — | — | |
| chrome | — | — | |
| chrome | — | — | |
| chrome | — | — | |
| chrome | — | — | |
| chrome | — | — | |
| chrome | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
VulDB
Google Chrome up to 2.0.172.32 resource management (EDB-33664 / Nessus ID 44317)
vuldb·2026-05-01·CVSS 9.3
CVE-2010-0655 [CRITICAL] Google Chrome up to 2.0.172.32 resource management (EDB-33664 / Nessus ID 44317)
A vulnerability marked as critical has been reported in Google Chrome up to 2.0.172.32. Impacted is an unknown function. The manipulation leads to improper resource management.
This vulnerability is documented as CVE-2010-0655. The attack can be initiated remotely. Additionally, an exploit exists.
It is suggested to upgrade the affected component.
GHSA
GHSA-rc82-2cq5-6rjx: Use-after-free vulnerability in Google Chrome before 4
ghsa_unreviewed·2022-05-02
CVE-2010-0655 [HIGH] GHSA-rc82-2cq5-6rjx: Use-after-free vulnerability in Google Chrome before 4
Use-after-free vulnerability in Google Chrome before 4.0.249.78 allows user-assisted remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via vectors involving the display of a blocked popup window during navigation to a different web site.
No detection rules found.
No writeups or analysis indexed.
http://code.google.com/p/chromium/issues/detail?id=12523http://googlechromereleases.blogspot.com/2010/01/stable-channel-update_25.htmlhttp://secunia.com/secunia_research/2009-65/http://securitytracker.com/id?1023506http://sites.google.com/a/chromium.org/dev/Home/chromium-security/chromium-security-bugshttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14069http://code.google.com/p/chromium/issues/detail?id=12523http://googlechromereleases.blogspot.com/2010/01/stable-channel-update_25.htmlhttp://secunia.com/secunia_research/2009-65/http://securitytracker.com/id?1023506http://sites.google.com/a/chromium.org/dev/Home/chromium-security/chromium-security-bugshttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14069
2010-02-18
Published