Vulnerabilities > CVE-2010-4201 - Use After Free vulnerability in Google Chrome

047910
CVSS 9.8 - CRITICAL
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
network
low complexity
google
CWE-416
critical

Summary

Use-after-free vulnerability in Google Chrome before 7.0.517.44 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving text control selections.

Vulnerable Configurations

Part Description Count
Application
Google
782

Common Weakness Enumeration (CWE)

Oval

accepted2013-08-12T04:01:08.380-04:00
classvulnerability
contributors
  • nameSecPod Team
    organizationSecPod Technologies
  • nameShane Shaffer
    organizationG2, Inc.
  • nameShane Shaffer
    organizationG2, Inc.
  • nameShane Shaffer
    organizationG2, Inc.
  • nameShane Shaffer
    organizationG2, Inc.
  • nameMaria Kedovskaya
    organizationALTX-SOFT
definition_extensions
commentGoogle Chrome is installed
ovaloval:org.mitre.oval:def:11914
descriptionUse-after-free vulnerability in Google Chrome before 7.0.517.44 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving text control selections.
familywindows
idoval:org.mitre.oval:def:12137
statusaccepted
submitted2010-11-27T06:04:55
titleUse-after-free vulnerability in Google Chrome before 7.0.517.44 via vectors involving text control selections
version50