CVE-2010-0655 Information

Description

Use-after-free vulnerability in Google Chrome before 4.0.249.78 allows user-assisted remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via vectors involving the display of a blocked popup window during navigation to a different web site.

Reference

http://code.google.com/p/chromium/issues/detail?id=12523 http://googlechromereleases.blogspot.com/2010/01/stable-channel-update_25.html http://secunia.com/secunia_research/2009-65/ http://securitytracker.com/id?1023506 http://sites.google.com/a/chromium.org/dev/Home/chromium-security/chromium-security-bugs https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A14069