CVE-2010-4206

HIGH
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

Array index error in the FEBlend::apply function in WebCore/platform/graphics/filters/FEBlend.cpp in WebKit, as used in Google Chrome before 7.0.517.44, webkitgtk before 1.2.6, and other products, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted SVG document, related to effects in the application of filters.

References

http://code.google.com/p/chromium/issues/detail?id=60688

http://googlechromereleases.blogspot.com/2010/11/stable-channel-update.html

http://lists.fedoraproject.org/pipermail/package-announce/2011-January/052906.html

http://secunia.com/advisories/42109

http://secunia.com/advisories/43086

http://trac.webkit.org/changeset/70652

http://www.mandriva.com/security/advisories?name=MDVSA-2011:039

http://www.redhat.com/support/errata/RHSA-2011-0177.html

http://www.securityfocus.com/bid/45721

http://www.vupen.com/english/advisories/2011/0216

http://www.vupen.com/english/advisories/2011/0552

https://bugs.webkit.org/show_bug.cgi?id=48371

https://bugzilla.redhat.com/show_bug.cgi?id=656129

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11949

Details

Source: MITRE

Published: 2010-11-06

Updated: 2020-07-31

Type: CWE-787

Risk Information

CVSS v2

Base Score: 6.8

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Impact Score: 6.4

Exploitability Score: 8.6

Severity: MEDIUM

CVSS v3

Base Score: 8.8

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Impact Score: 5.9

Exploitability Score: 2.8

Severity: HIGH

Tenable Plugins

View all (11 total)

IDNameProductFamilySeverity
79962GLSA-201412-09 : Multiple packages, Multiple vulnerabilities fixed in 2011NessusGentoo Local Security Checks
critical
68187Oracle Linux 6 : webkitgtk (ELSA-2011-0177)NessusOracle Linux Local Security Checks
critical
60943Scientific Linux Security Update : webkitgtk on SL6.x i386/x86_64NessusScientific Linux Local Security Checks
critical
55967Ubuntu 10.04 LTS / 10.10 : webkit vulnerabilities (USN-1195-1)NessusUbuntu Local Security Checks
critical
52523Mandriva Linux Security Advisory : webkit (MDVSA-2011:039)NessusMandriva Local Security Checks
critical
51672RHEL 6 : webkitgtk (RHSA-2011:0177)NessusRed Hat Local Security Checks
critical
51444Fedora 13 : webkitgtk-1.2.6-1.fc13 (2011-0121)NessusFedora Local Security Checks
high
51404FreeBSD : webkit-gtk2 -- Multiple vulnerabilities (06a12e26-142e-11e0-bea2-0015f2db7bde)NessusFreeBSD Local Security Checks
high
800908Google Chrome < 7.0.517.44 Multiple VulnerabilitiesLog Correlation EngineWeb Clients
high
5698Google Chrome < 7.0.517.44 Multiple VulnerabilitiesNessus Network MonitorWeb Clients
high
50476Google Chrome < 7.0.517.44 Multiple VulnerabilitiesNessusWindows
high