Vulnerability Database

296,515

Total vulnerabilities in the database

CVE-2009-2578

Google Chrome 2.x through 2.0.172 allows remote attackers to cause a denial of service (application crash) via a long Unicode string argument to the write method, a related issue to CVE-2009-2479.

Published: Jul 22, 2009
Updated: Apr 13, 2023
CVE: CVE-2009-2578
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:N/I:N/A:P

CWEs:

CWE-119

Affected Software
References

Software	From	Fixed in
google / chrome	2.0.157.2	2.0.157.2.x
google / chrome	2.0.157.0	2.0.157.0.x
google / chrome	2.0.172	2.0.172.x
google / chrome	2.0.156.1	2.0.156.1.x
google / chrome	2.0.159.0	2.0.159.0.x
google / chrome	2.0.158.0	2.0.158.0.x

http://websecurity.com.ua/3338/
http://www.securityfocus.com/archive/1/505092/100/0/threaded

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo