CVE-2010-4578 — Google Chrome vulnerability

7 documents6 sources

Severity

7.5HIGHNVD

EPSS

1.8%

top 17.31%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Google Chrome Google Chrome OS Debian Linux

Timeline

PublishedDec 22

Latest updateMay 13

Description

Google Chrome before 8.0.552.224 and Chrome OS before 8.0.552.343 do not properly perform cursor handling, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to "stale pointers."

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages2 packages

▶NVDgoogle/chrome< 8.0.552.224

▶NVDgoogle/chrome_os< 8.0.552.343

Also affects: Debian Linux 6.0, 7.0

🔴Vulnerability Details

GHSA

GHSA-jj76-mr38-79x4: Google Chrome before 8↗2022-05-13

▶

CVEList

CVE-2010-4578: Google Chrome before 8↗2010-12-22

▶

📋Vendor Advisories

Ubuntu

WebKit vulnerabilities↗2011-08-23

▶

Red Hat

WebKit: Stale SVG pointer in Cursors DOM↗2010-12-13

▶

💬Community

Bugzilla

CVE-2010-4492 CVE-2010-4493 CVE-2011-0482 CVE-2010-4199 CVE-2010-4578 CVE-2010-4040 CVE-2011-0778 CVE-2010-2901 CVE-2010-4042 webkitgtk various flaws [fedora-13]↗2011-02-09

▶

Bugzilla

CVE-2010-4578 WebKit: Stale SVG pointer in Cursors DOM↗2011-02-09

▶