CVE-2009-2555

N/A Unknown

Published: July 21, 2009 Modified: April 23, 2026

Description

Heap-based buffer overflow in src/jsregexp.cc in Google V8 before 1.1.10.14, as used in Google Chrome before 2.0.172.37, allows remote attackers to execute arbitrary code in the Chrome sandbox via a crafted JavaScript regular expression.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://code.google.com/p/chromium/issues/detail?id=14719

Source: cve@mitre.org

Vendor Advisory

http://codereview.chromium.org/141042

Source: cve@mitre.org

http://codereview.chromium.org/141042/diff/6/1004

Source: cve@mitre.org

http://googlechromereleases.blogspot.com/2009/07/stable-beta-update-bug-fixes.html

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/35844

Source: cve@mitre.org

Vendor Advisory

http://www.osvdb.org/55939

Source: cve@mitre.org

http://www.securityfocus.com/bid/35722

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2009/1924

Source: cve@mitre.org

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/51801

Source: cve@mitre.org

http://code.google.com/p/chromium/issues/detail?id=14719