| Vulnerability Name: | CVE-2010-4198 (CCN-63006) |
| Assigned: | 2010-11-04 |
| Published: | 2010-11-04 |
| Updated: | 2020-07-31 |
| Summary: | WebKit, as used in Google Chrome before 7.0.517.44, webkitgtk before 1.2.6, and other products, does not properly handle large text areas, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted HTML document. |
| CVSS v3 Severity: | 8.8 High (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H)| Exploitability Metrics: | Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): Required | | Scope: | Scope (S): Unchanged
| | Impact Metrics: | Confidentiality (C): High
Integrity (I): High
Availibility (A): High |
7.3 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)| Exploitability Metrics: | Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None | | Scope: | Scope (S): Unchanged
| | Impact Metrics: | Confidentiality (C): Low
Integrity (I): Low
Availibility (A): Low |
|
| CVSS v2 Severity: | 6.8 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P)
5.0 Medium (Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C)| Exploitability Metrics: | Access Vector (AV): Network
Access Complexity (AC): Medium
Authentication (Au): None | | Impact Metrics: | Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial |
6.8 Medium (CCN CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P)
5.0 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C)| Exploitability Metrics: | Access Vector (AV): Network
Access Complexity (AC): Medium
Athentication (Au): None
| | Impact Metrics: | Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial |
3.7 Low (REDHAT CVSS v2 Vector: AV:L/AC:H/Au:N/C:P/I:P/A:P)
2.7 Low (REDHAT Temporal CVSS v2 Vector: AV:L/AC:H/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C)| Exploitability Metrics: | Access Vector (AV): Local
Access Complexity (AC): High
Authentication (Au): None | | Impact Metrics: | Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial |
|
| Vulnerability Type: | CWE-20
|
| Vulnerability Consequences: | Gain Access |
| References: | Source: CONFIRM
Type: Release Notes, Vendor Advisory
http://code.google.com/p/chromium/issues/detail?id=55257
Source: MITRE
Type: CNA
CVE-2010-4198
Source: CCN
Type: Google Chrome Releases Web site
Stable Channel Update
Source: CONFIRM
Type: Vendor Advisory
http://googlechromereleases.blogspot.com/2010/11/stable-channel-update.html
Source: FEDORA
Type: Mailing List, Third Party Advisory
FEDORA-2011-0121
Source: CCN
Type: RHSA-2011-0177
Moderate: webkitgtk security update
Source: CCN
Type: SA42109
Google Chrome Multiple Vulnerabilities
Source: SECUNIA
Type: Broken Link
42109
Source: SECUNIA
Type: Broken Link
43086
Source: MANDRIVA
Type: Broken Link
MDVSA-2011:039
Source: CCN
Type: OSVDB ID: 69164
Google Chrome Crafted HTML Document Text Area Handling Memory Corruption
Source: REDHAT
Type: Not Applicable
RHSA-2011:0177
Source: CCN
Type: BID-44646
Google Chrome prior to 7.0.517.44 Multiple Security Vulnerabilities
Source: BID
Type: Third Party Advisory, VDB Entry
45719
Source: CCN
Type: BID-45719
WebKit Large Text Area (CVE-2010-4198) Denial of Service Vulnerability
Source: VUPEN
Type: Not Applicable
ADV-2011-0216
Source: VUPEN
Type: Not Applicable
ADV-2011-0552
Source: MISC
Type: Permissions Required, Vendor Advisory
https://bugs.webkit.org/show_bug.cgi?id=45611
Source: CONFIRM
Type: Issue Tracking, Patch, Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=656118
Source: XF
Type: UNKNOWN
chrome-text-area-code-execution(63006)
Source: OVAL
Type: Third Party Advisory
oval:org.mitre.oval:def:12157
|
| Vulnerable Configuration: | Configuration 1:
cpe:/a:google:chrome:*:*:*:*:*:*:*:* (Version < 7.0.517.44)
Configuration 2:
cpe:/a:webkitgtk:webkitgtk:1.2.6:*:*:*:*:*:*:*
Configuration 3:
cpe:/o:fedoraproject:fedora:13:*:*:*:*:*:*:*
Configuration RedHat 1:
cpe:/o:redhat:enterprise_linux:6:*:*:*:*:*:*:*
Configuration RedHat 2:
cpe:/o:redhat:enterprise_linux:6::client:*:*:*:*:*
Configuration RedHat 3:
cpe:/o:redhat:enterprise_linux:6::computenode:*:*:*:*:*
Configuration RedHat 4:
cpe:/o:redhat:enterprise_linux:6::server:*:*:*:*:*
Configuration RedHat 5:
cpe:/o:redhat:enterprise_linux:6::workstation:*:*:*:*:*
Configuration CCN 1:
cpe:/a:google:chrome:6.0.472.55:*:*:*:*:*:*:*OR cpe:/a:google:chrome:6.0.472.53:*:*:*:*:*:*:*OR cpe:/a:google:chrome:6.0.472.59:*:*:*:*:*:*:*OR cpe:/a:google:chrome:6.0.472.62:*:*:*:*:*:*:*OR cpe:/a:google:chrome:7.0.497.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:7.0.498.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:7.0.499.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:7.0.499.1:*:*:*:*:*:*:*OR cpe:/a:google:chrome:7.0.500.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:7.0.500.1:*:*:*:*:*:*:*OR cpe:/a:google:chrome:7.0.503.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:7.0.503.1:*:*:*:*:*:*:*OR cpe:/a:google:chrome:7.0.504.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:7.0.505.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:7.0.506.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:7.0.507.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:7.0.507.1:*:*:*:*:*:*:*OR cpe:/a:google:chrome:7.0.507.2:*:*:*:*:*:*:*OR cpe:/a:google:chrome:7.0.507.3:*:*:*:*:*:*:*OR cpe:/a:google:chrome:7.0.509.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:7.0.510.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:7.0.511.1:*:*:*:*:*:*:*OR cpe:/a:google:chrome:7.0.511.2:*:*:*:*:*:*:*OR cpe:/a:google:chrome:7.0.511.4:*:*:*:*:*:*:*OR cpe:/a:google:chrome:7.0.512.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:7.0.513.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:7.0.514.0:*:*:*:*:*:*:*OR cpe:/a:google:chrome:7.0.514.1:*:*:*:*:*:*:*AND cpe:/o:redhat:enterprise_linux:6:*:server:*:*:*:*:*OR cpe:/o:redhat:enterprise_linux:6:*:workstation:*:*:*:*:*OR cpe:/o:redhat:enterprise_linux_desktop:6:*:*:*:*:*:*:*OR cpe:/o:redhat:enterprise_linux_hpc_node:6:*:*:*:*:*:*:*
 Denotes that component is vulnerable |
| Oval Definitions |
|
| BACK |