CVE-2009-2555

Currently unrated

Key Information:

Vendor: Google
Status: V8; Chrome
Vendor: CVE Published:; 21 July 2009

Summary

Heap-based buffer overflow in src/jsregexp.cc in Google V8 before 1.1.10.14, as used in Google Chrome before 2.0.172.37, allows remote attackers to execute arbitrary code in the Chrome sandbox via a crafted JavaScript regular expression.

References

http://googlechromereleases.blogspot.com/2009/07/stable-b...

x_refsource_CONFIRM

http://code.google.com/p/chromium/issues/detail?id=14719

x_refsource_CONFIRM

http://www.securityfocus.com/bid/35722

vdb-entryx_refsource_BID

EPSS Score

7% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jul 21, 2009
Vulnerability Reserved
Jul 21, 2009

Collectors

NVD DatabaseMitre Database