Published: 06/11/2010 Updated: 31/07/2020

CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6

CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8

VMScore: 605

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Array index error in the FEBlend::apply function in WebCore/platform/graphics/filters/FEBlend.cpp in WebKit, as used in Google Chrome prior to 7.0.517.44, webkitgtk prior to 1.2.6, and other products, allows remote malicious users to cause a denial of service and possibly execute arbitrary code via a crafted SVG document, related to effects in the application of filters.

Vulnerable Product	Search on Vulmon	Subscribe to Product
google chrome
webkitgtk webkitgtk
fedoraproject fedora 13

Multiple security vulnerabilities were fixed in WebKit ...

CWE-787 http://googlechromereleases.blogspot.com/2010/11/stable-channel-update.html http://code.google.com/p/chromium/issues/detail?id=60688 http://secunia.com/advisories/42109 https://bugs.webkit.org/show_bug.cgi?id=48371 http://lists.fedoraproject.org/pipermail/package-announce/2011-January/052906.html http://trac.webkit.org/changeset/70652 https://bugzilla.redhat.com/show_bug.cgi?id=656129 http://www.securityfocus.com/bid/45721 http://www.redhat.com/support/errata/RHSA-2011-0177.html http://www.vupen.com/english/advisories/2011/0216 http://secunia.com/advisories/43086 http://www.mandriva.com/security/advisories?name=MDVSA-2011:039 http://www.vupen.com/english/advisories/2011/0552 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11949 https://usn.ubuntu.com/1195-1/https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2010-4206

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect