CVE-2010-2300

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 5.0.375.70

Description A use-after-free issue in the Element::normalizeAttributes function in dom/Element.cpp in WebCore in WebKit allows remote attackers to execute arbitrary code or cause a denial of service due to memory corruption. This issue is related to handlers for DOM mutation events.

Recommendations For versions prior to 5.0.375.70, update to version 5.0.375.70 or later to resolve the issue. As a temporary workaround, consider restricting access to DOM mutation event handlers until a patch is available.