CVE-2010-4577
published 2010-12-22CVE-2010-4577: The CSSParser::parseFontFaceSrc function in WebCore/css/CSSParser.cpp in WebKit, as used in Google Chrome before 8.0.552.224, Chrome OS before 8.0.552.343…
PriorityP339high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
EXPLOIT
EPSS
2.21%
80.4th percentile
The CSSParser::parseFontFaceSrc function in WebCore/css/CSSParser.cpp in WebKit, as used in Google Chrome before 8.0.552.224, Chrome OS before 8.0.552.343, webkitgtk before 1.2.6, and other products does not properly parse Cascading Style Sheets (CSS) token sequences, which allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted local font, related to "Type Confusion."
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| fedoraproject | fedora | — | — |
| chrome | < 8.0.552.224 | 8.0.552.224 | |
| chrome_os | < 8.0.552.343 | 8.0.552.343 | |
| webkitgtk | webkitgtk | < 1.2.6 | 1.2.6 |
CVSS provenance
nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P
vendor_redhat7.5HIGH
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
WebKit vulnerabilities
vendor_ubuntu·2011-08-23
CVE-2010-1824 WebKit vulnerabilities
Title: WebKit vulnerabilities
Summary: Multiple security vulnerabilities were fixed in WebKit.
A large number of security issues were discovered in the WebKit browser and
JavaScript engines. If a user were tricked into viewing a malicious
website, a remote attacker could exploit a variety of issues related to web
browser security, including cross-site scripting attacks, denial of
service attacks, and arbitrary code execution.
Instructions: After a standard system update you need to restart any applications that
use WebKit, such as Epiphany and Midori, to make all the necessary changes.
Red Hat
webkit: CSS Font Face Parsing Type Confusion Vulnerability
vendor_redhat·2010-12-13·CVSS 7.5
CVE-2010-4577 [HIGH] webkit: CSS Font Face Parsing Type Confusion Vulnerability
webkit: CSS Font Face Parsing Type Confusion Vulnerability
The CSSParser::parseFontFaceSrc function in WebCore/css/CSSParser.cpp in WebKit, as used in Google Chrome before 8.0.552.224, Chrome OS before 8.0.552.343, webkitgtk before 1.2.6, and other products does not properly parse Cascading Style Sheets (CSS) token sequences, which allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted local font, related to "Type Confusion."
GHSA
GHSA-9j34-5qgm-c4jh: The CSSParser::parseFontFaceSrc function in WebCore/css/CSSParser
ghsa_unreviewed·2022-05-13
CVE-2010-4577 [MEDIUM] CWE-125 GHSA-9j34-5qgm-c4jh: The CSSParser::parseFontFaceSrc function in WebCore/css/CSSParser
The CSSParser::parseFontFaceSrc function in WebCore/css/CSSParser.cpp in WebKit, as used in Google Chrome before 8.0.552.224, Chrome OS before 8.0.552.343, webkitgtk before 1.2.6, and other products does not properly parse Cascading Style Sheets (CSS) token sequences, which allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted local font, related to "Type Confusion."
Suricata
ET WEB_SERVER PHP Possible php Remote File Inclusion Attempt
suricata·2011-06-10
CVE-2002-0953 ET WEB_SERVER PHP Possible php Remote File Inclusion Attempt
ET WEB_SERVER PHP Possible php Remote File Inclusion Attempt
Rule: alert http $EXTERNAL_NET any -> $HOME_NET any (msg:"ET WEB_SERVER PHP Possible php Remote File Inclusion Attempt"; flow:established,to_server; http.uri; content:".php?"; content:"=php|3a|//"; reference:cve,2002-0953; reference:cve,2024-4577; reference:url,diablohorn.wordpress.com/2010/01/16/interesting-local-file-inclusion-method/; classtype:web-application-attack; sid:2013001; rev:5; metadata:created_at 2011_06_10, cve CVE_2002_0953, confidence Medium, signature_severity Major, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2020_04_20, mitre_tactic_id TA0001, mitre_tactic_name Initial_Access, mitre_technique_id T1190, mitre_technique_name Exploit_Public_Facing_Application;)
Bugzilla
CVE-2010-4577 webkit: CSS Font Face Parsing Type Confusion Vulnerability
bugzilla·2011-01-04·CVSS 7.5
CVE-2010-4577 [HIGH] CVE-2010-4577 webkit: CSS Font Face Parsing Type Confusion Vulnerability
CVE-2010-4577 webkit: CSS Font Face Parsing Type Confusion Vulnerability
Common Vulnerabilities and Exposures assigned an identifier CVE-2010-4577 to
the following vulnerability:
Name: CVE-2010-4577
Status: Candidate
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4577
Assigned: 20101221
Reference: CONFIRM:http://code.google.com/p/chromium/issues/detail?id=63866
Reference: CONFIRM:http://googlechromereleases.blogspot.com/2010/12/stable-beta-channel-updates_13.html
Google Chrome before 8.0.552.224 and Chrome OS before 8.0.552.343 do
not properly parse Cascading Style Sheets (CSS) token sequences,
which allows remote attackers to cause a denial of service
(out-of-bounds read) via unspecified vectors.
Upstream:
Bugzilla: https://bugs.webkit.org/show_bug.cgi?id=49883
Trac: http
Bugzilla
CVE-2010-4198 CVE-2010-4197 CVE-2010-4204 CVE-2010-4206 CVE-2010-3812 CVE-2010-3813 CVE-2010-4577 CVE-2010-3255 CVE-2010-3119 webkitgtk various flaws [fedora-13]
bugzilla·2011-01-04·CVSS 10.0
CVE-2010-4198 [CRITICAL] CVE-2010-4198 CVE-2010-4197 CVE-2010-4204 CVE-2010-4206 CVE-2010-3812 CVE-2010-3813 CVE-2010-4577 CVE-2010-3255 CVE-2010-3119 webkitgtk various flaws [fedora-13]
CVE-2010-4198 CVE-2010-4197 CVE-2010-4204 CVE-2010-4206 CVE-2010-3812 CVE-2010-3813 CVE-2010-4577 CVE-2010-3255 CVE-2010-3119 webkitgtk various flaws [fedora-13]
fedora-13 tracking bug for webkitgtk: see blocks bug list for full details of the security issue(s).
This bug is never intended to be made public, please put any public notes
in the 'blocks' bugs.
[bug automatically created by: add-tracking-bugs]
Discussion:
Adding parent bug CVE-2010-4197
New bodhi update url:
https://admin.fedoraproject.org/updates/new/?type_=security&bugs=656118,656115
---
Adding parent bug CVE-2010-4206
New bodhi update url:
https://admin.fedoraproject.org/updates/new/?type_=security&bugs=656118,656115,656129
---
Adding parent bug CVE-2010-3812
New bodhi update url:
https://admin.fedoraproject.org/up
http://code.google.com/p/chromium/issues/detail?id=63866http://googlechromereleases.blogspot.com/2010/12/stable-beta-channel-updates_13.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2011-January/052906.htmlhttp://secunia.com/advisories/42648http://secunia.com/advisories/43086http://trac.webkit.org/changeset/72685http://trac.webkit.org/changeset/72685/trunk/WebCore/css/CSSParser.cpphttp://www.debian.org/security/2011/dsa-2188http://www.gentoo.org/security/en/glsa/glsa-201012-01.xmlhttp://www.redhat.com/support/errata/RHSA-2011-0177.htmlhttp://www.securityfocus.com/bid/45722http://www.vupen.com/english/advisories/2011/0216https://bugs.webkit.org/show_bug.cgi?id=49883https://bugzilla.redhat.com/show_bug.cgi?id=667025https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13953http://code.google.com/p/chromium/issues/detail?id=63866http://googlechromereleases.blogspot.com/2010/12/stable-beta-channel-updates_13.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2011-January/052906.htmlhttp://secunia.com/advisories/42648http://secunia.com/advisories/43086http://trac.webkit.org/changeset/72685http://trac.webkit.org/changeset/72685/trunk/WebCore/css/CSSParser.cpphttp://www.debian.org/security/2011/dsa-2188http://www.gentoo.org/security/en/glsa/glsa-201012-01.xmlhttp://www.redhat.com/support/errata/RHSA-2011-0177.htmlhttp://www.securityfocus.com/bid/45722http://www.vupen.com/english/advisories/2011/0216https://bugs.webkit.org/show_bug.cgi?id=49883https://bugzilla.redhat.com/show_bug.cgi?id=667025https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13953
2010-12-22
Published