National Vulnerability Database

National Vulnerability Database

National Vulnerability
Database

Search Results (Refine Search)

Search Parameters:
  • Contains Software Flaws (CVE)
  • CPE Product Version: cpe:/a:google:chrome:16.0.912.9
There are 1,429 matching records.
Displaying matches 1281 through 1300.
Vuln ID Summary CVSS Severity
CVE-2011-3115

Google V8, as used in Google Chrome before 19.0.1084.52, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger "type corruption."

Published: May 24, 2012; 02:55:01 PM -04:00
    V2: 7.5 HIGH
CVE-2011-3114

Multiple buffer overflows in the PDF functionality in Google Chrome before 19.0.1084.52 allow remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger unknown function calls.

Published: May 24, 2012; 02:55:01 PM -04:00
    V2: 7.5 HIGH
CVE-2011-3113

The PDF functionality in Google Chrome before 19.0.1084.52 does not properly perform a cast of an unspecified variable during handling of color spaces, which allows remote attackers to cause a denial of service or possibly have unknown other impact via a crafted document.

Published: May 24, 2012; 02:55:01 PM -04:00
    V2: 7.5 HIGH
CVE-2011-3112

Use-after-free vulnerability in the PDF functionality in Google Chrome before 19.0.1084.52 allows remote attackers to cause a denial of service or possibly have unspecified other impact via an invalid encrypted document.

Published: May 24, 2012; 02:55:01 PM -04:00
    V2: 5.0 MEDIUM
CVE-2011-3111

Google V8, as used in Google Chrome before 19.0.1084.52, allows remote attackers to cause a denial of service (invalid read operation) via unspecified vectors.

Published: May 24, 2012; 02:55:01 PM -04:00
    V2: 5.0 MEDIUM
CVE-2011-3110

The PDF functionality in Google Chrome before 19.0.1084.52 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger out-of-bounds write operations.

Published: May 24, 2012; 02:55:01 PM -04:00
    V2: 7.5 HIGH
CVE-2011-3109

Google Chrome before 19.0.1084.52 on Linux does not properly perform a cast of an unspecified variable, which allows remote attackers to cause a denial of service or possibly have unknown other impact by leveraging an error in the GTK implementation of the UI.

Published: May 24, 2012; 02:55:01 PM -04:00
    V2: 7.5 HIGH
CVE-2011-3108

Use-after-free vulnerability in Google Chrome before 19.0.1084.52 allows remote attackers to execute arbitrary code via vectors related to the browser cache.

Published: May 24, 2012; 02:55:01 PM -04:00
    V2: 10.0 HIGH
CVE-2011-3107

Google Chrome before 19.0.1084.52 does not properly implement JavaScript bindings for plug-ins, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via unknown vectors.

Published: May 24, 2012; 02:55:01 PM -04:00
    V2: 7.5 HIGH
CVE-2011-3106

The WebSockets implementation in Google Chrome before 19.0.1084.52 does not properly handle use of SSL, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors.

Published: May 24, 2012; 02:55:01 PM -04:00
    V2: 10.0 HIGH
CVE-2011-3105

Use-after-free vulnerability in the Cascading Style Sheets (CSS) implementation in Google Chrome before 19.0.1084.52 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the :first-letter pseudo-element.

Published: May 24, 2012; 02:55:01 PM -04:00
    V2: 7.5 HIGH
CVE-2011-3104

Skia, as used in Google Chrome before 19.0.1084.52, allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.

Published: May 24, 2012; 02:55:00 PM -04:00
    V2: 5.0 MEDIUM
CVE-2011-3103

Google V8, as used in Google Chrome before 19.0.1084.52, does not properly perform garbage collection, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via crafted JavaScript code.

Published: May 24, 2012; 02:55:00 PM -04:00
    V2: 7.5 HIGH
CVE-2011-3102

Off-by-one error in libxml2, as used in Google Chrome before 19.0.1084.46 and other products, allows remote attackers to cause a denial of service (out-of-bounds write) or possibly have unspecified other impact via unknown vectors.

Published: May 15, 2012; 08:55:03 PM -04:00
    V2: 6.8 MEDIUM
CVE-2011-3101

Google Chrome before 19.0.1084.46 on Linux does not properly mitigate an unspecified flaw in an NVIDIA driver, which has unknown impact and attack vectors. NOTE: see CVE-2012-3105 for the related MFSA 2012-34 issue in Mozilla products.

Published: May 15, 2012; 08:55:03 PM -04:00
    V2: 10.0 HIGH
CVE-2011-3100

Google Chrome before 19.0.1084.46 does not properly draw dash paths, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.

Published: May 15, 2012; 08:55:03 PM -04:00
    V2: 5.0 MEDIUM
CVE-2011-3099

Use-after-free vulnerability in the PDF functionality in Google Chrome before 19.0.1084.46 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving a malformed name for the font encoding.

Published: May 15, 2012; 08:55:03 PM -04:00
    V2: 10.0 HIGH
CVE-2011-3098

Google Chrome before 19.0.1084.46 on Windows uses an incorrect search path for the Windows Media Player plug-in, which might allow local users to gain privileges via a Trojan horse plug-in in an unspecified directory.

Published: May 15, 2012; 08:55:03 PM -04:00
    V2: 7.2 HIGH
CVE-2011-3097

The PDF functionality in Google Chrome before 19.0.1084.46 allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging an out-of-bounds write error in the implementation of sampled functions.

Published: May 15, 2012; 08:55:03 PM -04:00
    V2: 10.0 HIGH
CVE-2011-3096

Use-after-free vulnerability in Google Chrome before 19.0.1084.46 on Linux allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging an error in the GTK implementation of the omnibox.

Published: May 15, 2012; 08:55:03 PM -04:00
    V2: 7.5 HIGH