CVE-2010-2298

browser/renderer_host/database_dispatcher_host.cc in Google Chrome before 5.0.375.70 on Linux does not properly handle ViewHostMsg_DatabaseOpenFile messages in chroot-based sandboxing, which allows remote attackers to bypass intended sandbox restrictions via vectors involving fchdir and chdir calls.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
10 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:C/I:C/A:C
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 60%
VendorProductVersion
googlechrome
𝑥
< 5.0.375.70
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
chromium-browser
lucid
not-affected
karmic
dne
jaunty
dne
hardy
dne
dapper
dne
Common Weakness Enumeration
References
http://code.google.com/p/chromium/issues/detail?id=43304
http://googlechromereleases.blogspot.com/2010/06/stable-channel-update.html
http://secunia.com/advisories/40072
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14154
http://code.google.com/p/chromium/issues/detail?id=43304
http://googlechromereleases.blogspot.com/2010/06/stable-channel-update.html
http://secunia.com/advisories/40072
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14154