National Vulnerability Database

National Vulnerability Database

National Vulnerability
Database

Search Results (Refine Search)

Search Parameters:
  • Contains Software Flaws (CVE)
  • CPE Product Version: cpe:/a:google:chrome:11.0.696.34
There are 1,737 matching records.
Displaying matches 1441 through 1460.
Vuln ID Summary CVSS Severity
CVE-2011-3102

Off-by-one error in libxml2, as used in Google Chrome before 19.0.1084.46 and other products, allows remote attackers to cause a denial of service (out-of-bounds write) or possibly have unspecified other impact via unknown vectors.

Published: May 15, 2012; 08:55:03 PM -04:00
    V2: 6.8 MEDIUM
CVE-2011-3101

Google Chrome before 19.0.1084.46 on Linux does not properly mitigate an unspecified flaw in an NVIDIA driver, which has unknown impact and attack vectors. NOTE: see CVE-2012-3105 for the related MFSA 2012-34 issue in Mozilla products.

Published: May 15, 2012; 08:55:03 PM -04:00
    V2: 10.0 HIGH
CVE-2011-3100

Google Chrome before 19.0.1084.46 does not properly draw dash paths, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.

Published: May 15, 2012; 08:55:03 PM -04:00
    V2: 5.0 MEDIUM
CVE-2011-3099

Use-after-free vulnerability in the PDF functionality in Google Chrome before 19.0.1084.46 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving a malformed name for the font encoding.

Published: May 15, 2012; 08:55:03 PM -04:00
    V2: 10.0 HIGH
CVE-2011-3098

Google Chrome before 19.0.1084.46 on Windows uses an incorrect search path for the Windows Media Player plug-in, which might allow local users to gain privileges via a Trojan horse plug-in in an unspecified directory.

Published: May 15, 2012; 08:55:03 PM -04:00
    V2: 7.2 HIGH
CVE-2011-3097

The PDF functionality in Google Chrome before 19.0.1084.46 allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging an out-of-bounds write error in the implementation of sampled functions.

Published: May 15, 2012; 08:55:03 PM -04:00
    V2: 10.0 HIGH
CVE-2011-3096

Use-after-free vulnerability in Google Chrome before 19.0.1084.46 on Linux allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging an error in the GTK implementation of the omnibox.

Published: May 15, 2012; 08:55:03 PM -04:00
    V2: 7.5 HIGH
CVE-2011-3095

The OGG container in Google Chrome before 19.0.1084.46 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that trigger an out-of-bounds write.

Published: May 15, 2012; 08:55:02 PM -04:00
    V2: 10.0 HIGH
CVE-2011-3094

Google Chrome before 19.0.1084.46 does not properly handle Tibetan text, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.

Published: May 15, 2012; 08:55:02 PM -04:00
    V2: 5.0 MEDIUM
CVE-2011-3093

Google Chrome before 19.0.1084.46 does not properly handle glyphs, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.

Published: May 15, 2012; 08:55:02 PM -04:00
    V2: 5.0 MEDIUM
CVE-2011-3092

The regex implementation in Google V8, as used in Google Chrome before 19.0.1084.46, allows remote attackers to cause a denial of service (invalid write operation) or possibly have unspecified other impact via unknown vectors.

Published: May 15, 2012; 08:55:02 PM -04:00
    V2: 10.0 HIGH
CVE-2011-3091

Use-after-free vulnerability in the IndexedDB implementation in Google Chrome before 19.0.1084.46 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.

Published: May 15, 2012; 08:55:02 PM -04:00
    V2: 10.0 HIGH
CVE-2011-3090

Race condition in Google Chrome before 19.0.1084.46 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to worker processes.

Published: May 15, 2012; 08:55:02 PM -04:00
    V2: 7.6 HIGH
CVE-2011-3089

Use-after-free vulnerability in Google Chrome before 19.0.1084.46 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving tables.

Published: May 15, 2012; 08:55:02 PM -04:00
    V2: 10.0 HIGH
CVE-2011-3088

Google Chrome before 19.0.1084.46 does not properly draw hairlines, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.

Published: May 15, 2012; 08:55:02 PM -04:00
    V2: 5.0 MEDIUM
CVE-2011-3086

Use-after-free vulnerability in Google Chrome before 19.0.1084.46 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving a STYLE element.

Published: May 15, 2012; 08:55:01 PM -04:00
    V2: 10.0 HIGH
CVE-2011-3085

The Autofill feature in Google Chrome before 19.0.1084.46 does not properly restrict field values, which allows remote attackers to cause a denial of service (UI corruption) and possibly conduct spoofing attacks via vectors involving long values.

Published: May 15, 2012; 08:55:01 PM -04:00
    V2: 5.0 MEDIUM
CVE-2011-3084

Google Chrome before 19.0.1084.46 does not use a dedicated process for the loading of links found on an internal page, which might allow attackers to bypass intended sandbox restrictions via a crafted page.

Published: May 15, 2012; 08:55:01 PM -04:00
    V2: 7.5 HIGH
CVE-2011-3083

browser/profiles/profile_impl_io_data.cc in Google Chrome before 19.0.1084.46 does not properly handle a malformed ftp URL in the SRC attribute of a VIDEO element, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted web page.

Published: May 15, 2012; 08:55:01 PM -04:00
    V2: 5.0 MEDIUM
CVE-2012-1521

Use-after-free vulnerability in the XML parser in Google Chrome before 18.0.1025.168 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.

Published: May 01, 2012; 06:12:04 AM -04:00
    V2: 10.0 HIGH