NA
CVSSv3

CVE-2010-0664

CVSSv4: NA | CVSSv3: NA | CVSSv2: 5 | VMScore: 600 | EPSS: 0.0167 | KEV: Not Included
Published: 18/02/2010 Updated: 21/11/2024

Vulnerability Summary

Stack consumption vulnerability in the ChildProcessSecurityPolicy::CanRequestURL function in browser/child_process_security_policy.cc in Google Chrome prior to 4.0.249.78 allows remote malicious users to cause a denial of service (memory consumption and application crash) via a URL that specifies multiple protocols, as demonstrated by a URL that begins with many repetitions of the view-source: substring.

Vulnerable Product Search on Vulmon Subscribe to Product

google chrome

google chrome 0.2.149.27

google chrome 0.2.149.29

google chrome 0.2.149.30

google chrome 0.2.152.1

google chrome 0.2.153.1

google chrome 0.3.154.0

google chrome 0.3.154.3

google chrome 0.4.154.18

google chrome 0.4.154.22

google chrome 0.4.154.31

google chrome 0.4.154.33

google chrome 1.0.154.36

google chrome 1.0.154.39

google chrome 1.0.154.42

google chrome 1.0.154.43

google chrome 1.0.154.46

google chrome 1.0.154.48

google chrome 1.0.154.52

google chrome 1.0.154.53

google chrome 1.0.154.59

google chrome 1.0.154.65

google chrome 2.0.156.1

google chrome 2.0.157.0

google chrome 2.0.157.2

google chrome 2.0.158.0

google chrome 2.0.159.0

google chrome 2.0.169.0

google chrome 2.0.169.1

google chrome 2.0.170.0

google chrome 2.0.172

google chrome 2.0.172.2

google chrome 2.0.172.8

google chrome 2.0.172.27

google chrome 2.0.172.28

google chrome 2.0.172.30

google chrome 2.0.172.31

google chrome 2.0.172.33

google chrome 2.0.172.37

google chrome 2.0.172.38

google chrome 3.0.182.2

google chrome 3.0.190.2

google chrome 3.0.193.2

google chrome 3.0.195.21

google chrome 3.0.195.24

google chrome 3.0.195.32

google chrome 3.0.195.33