National Vulnerability Database

National Vulnerability Database

National Vulnerability
Database

Search Results (Refine Search)

Search Parameters:
  • Contains Software Flaws (CVE)
  • CPE Product Version: cpe:/a:google:chrome:6.0.415.1
There are 1,880 matching records.
Displaying matches 1561 through 1580.
Vuln ID Summary CVSS Severity
CVE-2011-3922

Stack-based buffer overflow in Google Chrome before 16.0.912.75 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to glyph handling.

Published: January 07, 2012; 06:55:14 AM -05:00
    V2: 7.5 HIGH
CVE-2011-3921

Use-after-free vulnerability in Google Chrome before 16.0.912.75 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving animation frames.

Published: January 07, 2012; 06:55:14 AM -05:00
    V2: 7.5 HIGH
CVE-2011-3919

Heap-based buffer overflow in libxml2, as used in Google Chrome before 16.0.912.75, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.

Published: January 07, 2012; 06:55:13 AM -05:00
    V2: 7.5 HIGH
CVE-2011-3917

Stack-based buffer overflow in FileWatcher in Google Chrome before 16.0.912.63 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.

Published: December 13, 2011; 04:55:01 PM -05:00
    V2: 7.5 HIGH
CVE-2011-3916

Google Chrome before 16.0.912.63 does not properly handle PDF cross references, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.

Published: December 13, 2011; 04:55:01 PM -05:00
    V2: 5.0 MEDIUM
CVE-2011-3915

Buffer overflow in Google Chrome before 16.0.912.63 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to PDF fonts.

Published: December 13, 2011; 04:55:01 PM -05:00
    V2: 7.5 HIGH
CVE-2011-3914

The internationalization (aka i18n) functionality in Google V8, as used in Google Chrome before 16.0.912.63, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that trigger an out-of-bounds write.

Published: December 13, 2011; 04:55:01 PM -05:00
    V2: 7.5 HIGH
CVE-2011-3913

Use-after-free vulnerability in Google Chrome before 16.0.912.63 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to Range handling.

Published: December 13, 2011; 04:55:01 PM -05:00
    V2: 7.5 HIGH
CVE-2011-3912

Use-after-free vulnerability in Google Chrome before 16.0.912.63 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to SVG filters.

Published: December 13, 2011; 04:55:01 PM -05:00
    V2: 7.5 HIGH
CVE-2011-3911

Google Chrome before 16.0.912.63 does not properly handle PDF documents, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.

Published: December 13, 2011; 04:55:01 PM -05:00
    V2: 5.0 MEDIUM
CVE-2011-3910

Google Chrome before 16.0.912.63 does not properly handle YUV video frames, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.

Published: December 13, 2011; 04:55:01 PM -05:00
    V2: 5.0 MEDIUM
CVE-2011-3909

The Cascading Style Sheets (CSS) implementation in Google Chrome before 16.0.912.63 on 64-bit platforms does not properly manage property arrays, which allows remote attackers to cause a denial of service (memory corruption) via unspecified vectors.

Published: December 13, 2011; 04:55:01 PM -05:00
    V2: 7.5 HIGH
CVE-2011-3908

Google Chrome before 16.0.912.63 does not properly parse SVG documents, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.

Published: December 13, 2011; 04:55:01 PM -05:00
    V2: 5.0 MEDIUM
CVE-2011-3907

The view-source feature in Google Chrome before 16.0.912.63 allows remote attackers to spoof the URL bar via unspecified vectors.

Published: December 13, 2011; 04:55:01 PM -05:00
    V2: 4.3 MEDIUM
CVE-2011-3906

The PDF parser in Google Chrome before 16.0.912.63 allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.

Published: December 13, 2011; 04:55:01 PM -05:00
    V2: 5.0 MEDIUM
CVE-2011-3905

libxml2, as used in Google Chrome before 16.0.912.63, allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.

Published: December 13, 2011; 04:55:01 PM -05:00
    V2: 5.0 MEDIUM
CVE-2011-3904

Use-after-free vulnerability in Google Chrome before 16.0.912.63 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to bidirectional text (aka bidi) handling.

Published: December 13, 2011; 04:55:01 PM -05:00
    V2: 7.5 HIGH
CVE-2011-3903

Google Chrome before 16.0.912.63 does not properly perform regex matching, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.

Published: December 13, 2011; 04:55:00 PM -05:00
    V2: 5.0 MEDIUM
CVE-2011-4692

WebKit, as used in Apple Safari 5.1.1 and earlier and Google Chrome 15 and earlier, does not prevent capture of data about the time required for image loading, which makes it easier for remote attackers to determine whether an image exists in the browser cache via crafted JavaScript code, as demonstrated by visipisi.

Published: December 07, 2011; 02:55:03 PM -05:00
    V2: 5.0 MEDIUM
CVE-2011-4691

Google Chrome 15.0.874.121 and earlier does not prevent capture of data about the times of Same Origin Policy violations during IFRAME loading attempts, which makes it easier for remote attackers to determine whether a document exists in the browser cache via crafted JavaScript code.

Published: December 07, 2011; 02:55:03 PM -05:00
    V2: 5.0 MEDIUM