9.3
CVSSv2

CVE-2010-0645

Published: 18/02/2010 Updated: 19/09/2017
CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6
VMScore: 828
Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Vulnerability Summary

Multiple integer overflows in factory.cc in Google V8 before r3560, as used in Google Chrome prior to 4.0.249.89, allow remote attackers to execute arbitrary code in the Chrome sandbox via crafted use of JavaScript arrays.

Affected Products

Vendor Product Versions
GoogleChrome0.2.149.27, 0.2.149.29, 0.2.149.30, 0.2.152.1, 0.2.153.1, 0.3.154.0, 0.3.154.3, 0.4.154.18, 0.4.154.22, 0.4.154.31, 0.4.154.33, 1.0.154.36, 1.0.154.39, 1.0.154.42, 1.0.154.43, 1.0.154.46, 1.0.154.48, 1.0.154.52, 1.0.154.53, 1.0.154.59, 1.0.154.65, 2.0.156.1, 2.0.157.0, 2.0.157.2, 2.0.158.0, 2.0.159.0, 2.0.169.0, 2.0.169.1, 2.0.170.0, 2.0.172, 2.0.172.2, 2.0.172.8, 2.0.172.27, 2.0.172.28, 2.0.172.30, 2.0.172.31, 2.0.172.33, 2.0.172.37, 2.0.172.38, 3.0.182.2, 3.0.190.2, 3.0.193.2, 3.0.195.21, 3.0.195.24, 3.0.195.32, 3.0.195.33, 4.0.249.78