CVE-2010-1773 — HIGH (8.8) — White Hats Nepal

Q: How severe is CVE-2010-1773?

CVE-2010-1773 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2010-1773?

Check the references section above for vendor advisories and patch information. Affected products include: Google Chrome, Redhat Enterprise Linux, Canonical Ubuntu Linux, Opensuse Opensuse, Fedoraproject Fedora.

Vulnerability Description

Off-by-one error in the toAlphabetic function in rendering/RenderListMarker.cpp in WebCore in WebKit before r59950, as used in Google Chrome before 5.0.375.70, allows remote attackers to obtain sensitive information, cause a denial of service (memory corruption and application crash), or possibly execute arbitrary code via vectors related to list markers for HTML lists, aka rdar problem 8009118.

CVSS Score

8.8

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Google	Chrome	< 5.0.375.70
Redhat	Enterprise Linux	6.0
Canonical	Ubuntu Linux	9.10
Opensuse	Opensuse	11.2
Fedoraproject	Fedora	12

Related Weaknesses (CWE)

CWE-193

References

http://code.google.com/p/chromium/issues/detail?id=44955Mailing ListVendor Advisory
http://googlechromereleases.blogspot.com/2010/06/stable-channel-update.htmlRelease NotesVendor Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2010-July/044023.htmlMailing ListThird Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2010-July/044031.htmlMailing ListThird Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.htmlMailing ListThird Party Advisory
http://secunia.com/advisories/40072Broken Link
http://secunia.com/advisories/40557Broken Link
http://secunia.com/advisories/41856Broken Link
http://secunia.com/advisories/43068Broken Link
http://trac.webkit.org/changeset/59950Mailing ListPatchVendor Advisory
http://www.mandriva.com/security/advisories?name=MDVSA-2011:039Broken Link
http://www.securityfocus.com/bid/41575Third Party AdvisoryVDB Entry
http://www.ubuntu.com/usn/USN-1006-1Third Party Advisory
http://www.vupen.com/english/advisories/2010/1801Broken Link
http://www.vupen.com/english/advisories/2010/2722Broken Link

FAQ

What is CVE-2010-1773?

CVE-2010-1773 is a vulnerability with a CVSS score of 8.8 (HIGH). Off-by-one error in the toAlphabetic function in rendering/RenderListMarker.cpp in WebCore in WebKit before r59950, as used in Google Chrome before 5.0.375.70, allows remote attackers to obtain sensit...

How severe is CVE-2010-1773?

CVE-2010-1773 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2010-1773?

Check the references section above for vendor advisories and patch information. Affected products include: Google Chrome, Redhat Enterprise Linux, Canonical Ubuntu Linux, Opensuse Opensuse, Fedoraproject Fedora.