CVE-2010-0647

Published: Feb 18, 2010

Modified: Aug 7, 2024

PUBLISHED

Description

WebKit before r53525, as used in Google Chrome before 4.0.249.89, allows remote attackers to execute arbitrary code in the Chrome sandbox via a malformed RUBY element, as demonstrated by a <ruby>><table><rt> sequence.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

MDVSA-2011:039

vendor-advisory

x_refsource_MANDRIVA

oval:org.mitre.oval:def:14094

vdb-entry

signature

x_refsource_OVAL

38177

vdb-entry

x_refsource_BID

62317

vdb-entry

x_refsource_OSVDB

ADV-2010-2722

vdb-entry

x_refsource_VUPEN

43068

third-party-advisory

x_refsource_SECUNIA

USN-1006-1

vendor-advisory

x_refsource_UBUNTU

41856

third-party-advisory

x_refsource_SECUNIA

ADV-2011-0212

vdb-entry

x_refsource_VUPEN

http://sites.google.com/a/chromium.org/dev/Home/chromium-security/chromium-security-bugs

x_refsource_CONFIRM

googlechrome-ruby-tags-code-exec(56214)

vdb-entry

x_refsource_XF

1023583

vdb-entry

x_refsource_SECTRACK

ADV-2010-0361

vdb-entry

x_refsource_VUPEN

SUSE-SR:2011:002

vendor-advisory

x_refsource_SUSE

https://bugs.webkit.org/show_bug.cgi?id=33266

x_refsource_CONFIRM

ADV-2011-0552

vdb-entry

x_refsource_VUPEN

http://trac.webkit.org/changeset/53525

x_refsource_CONFIRM

http://code.google.com/p/chromium/issues/detail?id=31692

x_refsource_CONFIRM

http://googlechromereleases.blogspot.com/2010/02/stable-channel-update.html

x_refsource_CONFIRM

38545

third-party-advisory

x_refsource_SECUNIA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2010-0647

Description

Affected Products

References