| Vulnerability Name: | CVE-2010-0664 (CCN-55989) |
| Assigned: | 2010-01-25 |
| Published: | 2010-01-25 |
| Updated: | 2017-09-19 |
| Summary: | Stack consumption vulnerability in the ChildProcessSecurityPolicy::CanRequestURL function in browser/child_process_security_policy.cc in Google Chrome before 4.0.249.78 allows remote attackers to cause a denial of service (memory consumption and application crash) via a URL that specifies multiple protocols, as demonstrated by a URL that begins with many repetitions of the view-source: substring.
|
| CVSS v3 Severity: | 5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)| Exploitability Metrics: | Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None | | Scope: | Scope (S): Unchanged
| | Impact Metrics: | Confidentiality (C): None
Integrity (I): None
Availibility (A): Low |
|
| CVSS v2 Severity: | 5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)
3.7 Low (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P/E:U/RL:OF/RC:C)| Exploitability Metrics: | Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None | | Impact Metrics: | Confidentiality (C): None
Integrity (I): None
Availibility (A): Partial |
4.3 Medium (CCN CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P)
3.2 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P/E:U/RL:OF/RC:C)| Exploitability Metrics: | Access Vector (AV): Network
Access Complexity (AC): Medium
Athentication (Au): None
| | Impact Metrics: | Confidentiality (C): None
Integrity (I): None
Availibility (A): Partial |
|
| Vulnerability Type: | CWE-399
|
| Vulnerability Consequences: | Denial of Service |
| References: | Source: CONFIRM
Type: Exploit
http://code.google.com/p/chromium/issues/detail?id=31517
Source: MITRE
Type: CNA
CVE-2010-0664
Source: MISC
Type: Exploit
http://exchange.kg/other/chrome3_0day-denial_of_service_crash.html
Source: CCN
Type: Google Chrome Releases
Stable Channel Update
Source: CONFIRM
Type: Patch
http://googlechromereleases.blogspot.com/2010/01/stable-channel-update_25.html
Source: CCN
Type: SA37769
Google Chrome Multiple Vulnerabilities
Source: CCN
Type: SECTRACK ID: 1023506
Google Chrome Bugs Let Remote Users Execute Arbitrary Code, Deny Service, and Obtain Information.
Source: SECTRACK
Type: UNKNOWN
1023506
Source: CONFIRM
Type: Vendor Advisory
http://sites.google.com/a/chromium.org/dev/Home/chromium-security/chromium-security-bugs
Source: MISC
Type: Exploit
http://twitter.com/akirsanov/statuses/7370288490
Source: CCN
Type: OSVDB ID: 62461
Google Chrome browser/child_process_security_policy.cc ChildProcessSecurityPolicy::CanRequestURL Function DoS
Source: CCN
Type: BID-37948
Google Chrome prior to 4.0.249.78 Multiple Security Vulnerabilities
Source: XF
Type: UNKNOWN
googlechrome-canrequesturl-dos(55989)
Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:14097
|
| Vulnerable Configuration: | Configuration 1:
cpe:/a:google:chrome:0.2.149.27:*:*:*:*:*:*:*OR cpe:/a:google:chrome:0.2.149.29:*:*:*:*:*:*:*OR cpe:/a:google:chrome:0.2.149.30:*:*:*:*:*:*:*OR cpe:/a:google:chrome:0.2.152.1:*:*:*:*:*:*:*OR cpe:/a:google:chrome:0.2.153.1:*:*:*:*:*:*:*OR cpe:/a:google:chrome:0.3.154.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:0.3.154.3:*:*:*:*:*:*:*OR cpe:/a:google:chrome:0.4.154.18:*:*:*:*:*:*:*OR cpe:/a:google:chrome:0.4.154.22:*:*:*:*:*:*:*OR cpe:/a:google:chrome:0.4.154.31:*:*:*:*:*:*:*OR cpe:/a:google:chrome:0.4.154.33:*:*:*:*:*:*:*OR cpe:/a:google:chrome:1.0.154.36:*:*:*:*:*:*:*OR cpe:/a:google:chrome:1.0.154.39:*:*:*:*:*:*:*OR cpe:/a:google:chrome:1.0.154.42:*:*:*:*:*:*:*OR cpe:/a:google:chrome:1.0.154.43:*:*:*:*:*:*:*OR cpe:/a:google:chrome:1.0.154.46:*:*:*:*:*:*:*OR cpe:/a:google:chrome:1.0.154.48:*:*:*:*:*:*:*OR cpe:/a:google:chrome:1.0.154.52:*:*:*:*:*:*:*OR cpe:/a:google:chrome:1.0.154.53:*:*:*:*:*:*:*OR cpe:/a:google:chrome:1.0.154.59:*:*:*:*:*:*:*OR cpe:/a:google:chrome:1.0.154.65:*:*:*:*:*:*:*OR cpe:/a:google:chrome:2.0.156.1:*:*:*:*:*:*:*OR cpe:/a:google:chrome:2.0.157.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:2.0.157.2:*:*:*:*:*:*:*OR cpe:/a:google:chrome:2.0.158.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:2.0.159.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:2.0.169.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:2.0.169.1:*:*:*:*:*:*:*OR cpe:/a:google:chrome:2.0.170.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:2.0.172:*:*:*:*:*:*:*OR cpe:/a:google:chrome:2.0.172.2:*:*:*:*:*:*:*OR cpe:/a:google:chrome:2.0.172.8:*:*:*:*:*:*:*OR cpe:/a:google:chrome:2.0.172.27:*:*:*:*:*:*:*OR cpe:/a:google:chrome:2.0.172.28:*:*:*:*:*:*:*OR cpe:/a:google:chrome:2.0.172.30:*:*:*:*:*:*:*OR cpe:/a:google:chrome:2.0.172.31:*:*:*:*:*:*:*OR cpe:/a:google:chrome:2.0.172.33:*:*:*:*:*:*:*OR cpe:/a:google:chrome:2.0.172.37:*:*:*:*:*:*:*OR cpe:/a:google:chrome:2.0.172.38:*:*:*:*:*:*:*OR cpe:/a:google:chrome:3.0.182.2:*:*:*:*:*:*:*OR cpe:/a:google:chrome:3.0.190.2:*:*:*:*:*:*:*OR cpe:/a:google:chrome:3.0.193.2:beta:*:*:*:*:*:*OR cpe:/a:google:chrome:3.0.195.21:*:*:*:*:*:*:*OR cpe:/a:google:chrome:3.0.195.24:*:*:*:*:*:*:*OR cpe:/a:google:chrome:3.0.195.32:*:*:*:*:*:*:*OR cpe:/a:google:chrome:3.0.195.33:*:*:*:*:*:*:*OR cpe:/a:google:chrome:*:*:*:*:*:*:*:* (Version <= 4.0.249.0)
Configuration CCN 1:
cpe:/a:google:chrome:0.2.149.27:*:*:*:*:*:*:*OR cpe:/a:google:chrome:0.2.149.29:*:*:*:*:*:*:*OR cpe:/a:google:chrome:0.2.149.30:*:*:*:*:*:*:*OR cpe:/a:google:chrome:1.0.154.36:*:*:*:*:*:*:*OR cpe:/a:google:chrome:1.0.154.53:*:*:*:*:*:*:*OR cpe:/a:google:chrome:1.0.154.46:*:*:*:*:*:*:*OR cpe:/a:google:chrome:1.0.154.59:*:*:*:*:*:*:*OR cpe:/a:google:chrome:1.0.154.48:*:*:*:*:*:*:*OR cpe:/a:google:chrome:1.0.154.64:*:*:*:*:*:*:*OR cpe:/a:google:chrome:1.0.154.65:*:*:*:*:*:*:*OR cpe:/a:google:chrome:2.0.172.30:*:*:*:*:*:*:*OR cpe:/a:google:chrome:2.0.172.31:*:*:*:*:*:*:*OR cpe:/a:google:chrome:2.0.172.33:*:*:*:*:*:*:*OR cpe:/a:google:chrome:2.0.172.37:*:*:*:*:*:*:*OR cpe:/a:google:chrome:3.0.195.24:*:*:*:*:*:*:*OR cpe:/a:google:chrome:3.0.195.33:*:*:*:*:*:*:*
 Denotes that component is vulnerable |
| Oval Definitions |
| Definition ID | Class | Title | Last Modified |
|---|
| oval:org.mitre.oval:def:14097 | V | Stack consumption vulnerability in the ChildProcessSecurityPolicy::CanRequestURL function in browser/child_process_security_policy.cc in Google Chrome before 4.0.249.78 allows remote attackers to cause a denial of service (memory consumption and application crash) via a URL that specifies multiple protocols, as demonstrated by a URL that begins with many repetitions of the view-source: substring. | 2014-04-07 |
|
| BACK |