CVE-2009-2556

EUVD-2009-2551
Google Chrome before 2.0.172.37 allows attackers to leverage renderer access to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unspecified vectors that trigger excessive memory allocation.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:C/I:C/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 63%
Affected Products (NVD)
VendorProductVersion
googlechrome
𝑥
≤ 2.0.172.33
googlechrome
0.2.149.29
googlechrome
0.2.149.30
googlechrome
0.2.152.1
googlechrome
0.2.153.1
googlechrome
0.3.154.0
googlechrome
0.3.154.3
googlechrome
0.4.154.18
googlechrome
0.4.154.22
googlechrome
0.4.154.31
googlechrome
0.4.154.33
googlechrome
1.0.154.36
googlechrome
1.0.154.39
googlechrome
1.0.154.42
googlechrome
1.0.154.43
googlechrome
1.0.154.46
googlechrome
1.0.154.48
googlechrome
1.0.154.52
googlechrome
1.0.154.53
googlechrome
1.0.154.59
googlechrome
2.0.156.1
googlechrome
2.0.157.0
googlechrome
2.0.157.2
googlechrome
2.0.158.0
googlechrome
2.0.159.0
googlechrome
2.0.172
googlechrome
2.0.172.30
googlechrome
2.0.172.31
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://googlechromereleases.blogspot.com/2009/07/stable-beta-update-bug-fixes.html
http://secunia.com/advisories/35844
http://www.securityfocus.com/bid/35723
http://www.vupen.com/english/advisories/2009/1924
https://exchange.xforce.ibmcloud.com/vulnerabilities/51802
http://googlechromereleases.blogspot.com/2009/07/stable-beta-update-bug-fixes.html
http://secunia.com/advisories/35844
http://www.securityfocus.com/bid/35723
http://www.vupen.com/english/advisories/2009/1924
https://exchange.xforce.ibmcloud.com/vulnerabilities/51802