CVE-2010-0645

2010-02-18 19:00:00 2017-09-19 03:30:27

Multiple integer overflows in factory.cc in Google V8 before r3560, as used in Google Chrome before 4.0.249.89, allow remote attackers to execute arbitrary code in the Chrome sandbox via crafted use of JavaScript arrays.

Vector

NETWORK

Complexity

MEDIUM

Authentication

NONE

Confidentiality

COMPLETE

Integrity

COMPLETE

Availability

COMPLETE

Google - Chrome

Advisory	Patch	Confirmed	Link
			googlechrome-v8engine-code-exec(56213)
			ADV-2010-0361
			http://sites.google.com/a/chromium.org/dev/Home/chromium...
			http://googlechromereleases.blogspot.com/2010/02/stable-...
			38177
			1023583
			http://codereview.chromium.org/525064
			http://code.google.com/p/v8/source/detail?r=3560
			http://code.google.com/p/chromium/issues/detail?id=31009

CVE-2010-0645

2010-02-18 19:00:00 2017-09-19 03:30:27

Vector

Complexity

Authentication

Confidentiality

Integrity

Availability

Numeric Errors (ID 189)