CVE-2010-2648

EUVD-2010-2652
The implementation of the Unicode Bidirectional Algorithm (aka Bidi algorithm or UBA) in Google Chrome before 5.0.375.99 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:C/I:C/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 83%
Affected Products (NVD)
VendorProductVersion
googlechrome
𝑥
< 5.0.375.99
opensuseopensuse
11.3
canonicalubuntu_linux
9.10
canonicalubuntu_linux
10.04
canonicalubuntu_linux
10.10
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
chromium-browser
dapper
dne
hardy
dne
jaunty
dne
karmic
dne
lucid
Fixed 6.0.472.53~r57914-0ubuntu0.10.04.1
released
maverick
not-affected
natty
not-affected
webkit
dapper
dne
hardy
ignored
jaunty
ignored
karmic
Fixed 1.2.5-0ubuntu0.9.10.1
released
lucid
not-affected
maverick
not-affected
natty
not-affected
Common Weakness Enumeration
References
http://code.google.com/p/chromium/issues/detail?id=44424
http://googlechromereleases.blogspot.com/2010/07/stable-channel-update.html
http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00000.html
http://secunia.com/advisories/41856
http://www.mandriva.com/security/advisories?name=MDVSA-2011:039
http://www.ubuntu.com/usn/USN-1006-1
http://www.vupen.com/english/advisories/2010/2722
http://www.vupen.com/english/advisories/2011/0552
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11900
http://code.google.com/p/chromium/issues/detail?id=44424
http://googlechromereleases.blogspot.com/2010/07/stable-channel-update.html
http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00000.html
http://secunia.com/advisories/41856
http://www.mandriva.com/security/advisories?name=MDVSA-2011:039
http://www.ubuntu.com/usn/USN-1006-1
http://www.vupen.com/english/advisories/2010/2722
http://www.vupen.com/english/advisories/2011/0552
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11900