1. CVE-Search
  2. CVE-2009-3268
ID CVE-2009-3268
Summary Google Chrome 1.0.154.48 and earlier allows remote attackers to cause a denial of service (CPU consumption) via an automatically submitted form containing a KEYGEN element, a related issue to CVE-2009-1828.
References
Vulnerable Configurations
  • cpe:2.3:a:google:chrome:0.2.149.27:*:*:*:*:*:*:*
    cpe:2.3:a:google:chrome:0.2.149.27:*:*:*:*:*:*:*
  • cpe:2.3:a:google:chrome:0.2.149.29:*:*:*:*:*:*:*
    cpe:2.3:a:google:chrome:0.2.149.29:*:*:*:*:*:*:*
  • cpe:2.3:a:google:chrome:0.2.149.30:*:*:*:*:*:*:*
    cpe:2.3:a:google:chrome:0.2.149.30:*:*:*:*:*:*:*
  • cpe:2.3:a:google:chrome:0.2.152.1:*:*:*:*:*:*:*
    cpe:2.3:a:google:chrome:0.2.152.1:*:*:*:*:*:*:*
  • cpe:2.3:a:google:chrome:0.2.153.1:*:*:*:*:*:*:*
    cpe:2.3:a:google:chrome:0.2.153.1:*:*:*:*:*:*:*
  • cpe:2.3:a:google:chrome:0.3.154.0:*:*:*:*:*:*:*
    cpe:2.3:a:google:chrome:0.3.154.0:*:*:*:*:*:*:*
  • cpe:2.3:a:google:chrome:0.3.154.3:*:*:*:*:*:*:*
    cpe:2.3:a:google:chrome:0.3.154.3:*:*:*:*:*:*:*
  • cpe:2.3:a:google:chrome:0.4.154.18:*:*:*:*:*:*:*
    cpe:2.3:a:google:chrome:0.4.154.18:*:*:*:*:*:*:*
  • cpe:2.3:a:google:chrome:0.4.154.22:*:*:*:*:*:*:*
    cpe:2.3:a:google:chrome:0.4.154.22:*:*:*:*:*:*:*
  • cpe:2.3:a:google:chrome:0.4.154.31:*:*:*:*:*:*:*
    cpe:2.3:a:google:chrome:0.4.154.31:*:*:*:*:*:*:*
  • cpe:2.3:a:google:chrome:0.4.154.33:*:*:*:*:*:*:*
    cpe:2.3:a:google:chrome:0.4.154.33:*:*:*:*:*:*:*
  • cpe:2.3:a:google:chrome:1.0.154.36:*:*:*:*:*:*:*
    cpe:2.3:a:google:chrome:1.0.154.36:*:*:*:*:*:*:*
  • cpe:2.3:a:google:chrome:1.0.154.39:*:*:*:*:*:*:*
    cpe:2.3:a:google:chrome:1.0.154.39:*:*:*:*:*:*:*
  • cpe:2.3:a:google:chrome:1.0.154.42:*:*:*:*:*:*:*
    cpe:2.3:a:google:chrome:1.0.154.42:*:*:*:*:*:*:*
  • cpe:2.3:a:google:chrome:1.0.154.43:*:*:*:*:*:*:*
    cpe:2.3:a:google:chrome:1.0.154.43:*:*:*:*:*:*:*
  • cpe:2.3:a:google:chrome:1.0.154.46:*:*:*:*:*:*:*
    cpe:2.3:a:google:chrome:1.0.154.46:*:*:*:*:*:*:*
  • cpe:2.3:a:google:chrome:0.1.38.1:*:*:*:*:*:*:*
    cpe:2.3:a:google:chrome:0.1.38.1:*:*:*:*:*:*:*
  • cpe:2.3:a:google:chrome:0.1.38.2:*:*:*:*:*:*:*
    cpe:2.3:a:google:chrome:0.1.38.2:*:*:*:*:*:*:*
  • cpe:2.3:a:google:chrome:0.1.38.4:*:*:*:*:*:*:*
    cpe:2.3:a:google:chrome:0.1.38.4:*:*:*:*:*:*:*
  • cpe:2.3:a:google:chrome:0.1.40.1:*:*:*:*:*:*:*
    cpe:2.3:a:google:chrome:0.1.40.1:*:*:*:*:*:*:*
  • cpe:2.3:a:google:chrome:0.1.42.2:*:*:*:*:*:*:*
    cpe:2.3:a:google:chrome:0.1.42.2:*:*:*:*:*:*:*
  • cpe:2.3:a:google:chrome:0.1.42.3:*:*:*:*:*:*:*
    cpe:2.3:a:google:chrome:0.1.42.3:*:*:*:*:*:*:*
  • cpe:2.3:a:google:chrome:1.0.154.48:*:*:*:*:*:*:*
    cpe:2.3:a:google:chrome:1.0.154.48:*:*:*:*:*:*:*
CVSS
Base: 5.0 (as of 10-10-2018 - 19:43)
Impact:
Exploitability:
CWE CWE-399
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:N/I:N/A:P
refmap via4
bugtraq 20090908 Re: DoS vulnerability in Google Chrome
misc http://websecurity.com.ua/3194/
Last major update 10-10-2018 - 19:43
Published 18-09-2009 - 22:30
Last modified 10-10-2018 - 19:43
Back to Top