CVSS: 7.5EPSS: 0%CPEs: 4EXPL: 1CVE-2011-3071 – Webkit HTMLMedia Element beforeLoad Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2011-3071
Use-after-free vulnerability in the HTMLMediaElement implementation in Google Chrome before 18.0.1025.151 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors. Una vulnerabilidad de uso después de liberación en la implementación de HTMLMediaElement en Google Chrome antes de v18.0.1025.151 permite a atacantes remotos causar una denegación de servicio o posiblemente tener un impacto no especificado This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple Safari Webkit. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the library's implementation of a HTMLMedia element. After a source element is created, an attacker can catch the beforeLoad event before the element is used, and delete the element. The pointer to the source element will then be referenced causing a use-after-free condition, which can lead to code execution under the context of the application. • http://code.google.com/p/chromium/issues/detail?id=118273 http://googlechromereleases.blogspot.com/2012/04/stable-and-beta-channel-updates.html http://lists.apple.com/archives/security-announce/2012/Jul/msg00000.html http://lists.apple.com/archives/security-announce/2012/Sep/msg00001.html http://lists.apple.com/archives/security-announce/2012/Sep/msg00003.html http://osvdb.org/81041 http://secunia.com/advisories/48732 http://secunia.com/advisories/48749 http://security.gentoo.org/glsa& • CWE-416: Use After Free •
CVSS: 6.8EPSS: 1%CPEs: 4EXPL: 1CVE-2011-3069
https://notcve.org/view.php?id=CVE-2011-3069
Use-after-free vulnerability in the Cascading Style Sheets (CSS) implementation in Google Chrome before 18.0.1025.151 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to line boxes. Una vulnerabilidad de uso después de liberación en la implementación de las hojas dee stilo en cascada (CSS) en Google Chrome antes de v18.0.1025.151 permite a atacantes remotos causar una denegación de servicio o posiblemente tener un impacto no especificado a través de vectores relacionados con cajas de linea. • http://code.google.com/p/chromium/issues/detail?id=117728 http://googlechromereleases.blogspot.com/2012/04/stable-and-beta-channel-updates.html http://lists.apple.com/archives/security-announce/2012/Jul/msg00000.html http://lists.apple.com/archives/security-announce/2012/Sep/msg00001.html http://lists.apple.com/archives/security-announce/2012/Sep/msg00003.html http://osvdb.org/81039 http://secunia.com/advisories/48732 http://secunia.com/advisories/48749 http://security.gentoo.org/glsa& • CWE-416: Use After Free •
CVSS: 6.8EPSS: 0%CPEs: 4EXPL: 1CVE-2011-3074
https://notcve.org/view.php?id=CVE-2011-3074
Use-after-free vulnerability in Google Chrome before 18.0.1025.151 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the handling of media. Una vulnerabilidad de uso después de liberación en Google Chrome antes de v18.0.1025.151 permite a atacantes remotos causar una denegación de servicio o posiblemente tener un impacto no especificado a través de vectores relacionados con la gestión de medios. • http://code.google.com/p/chromium/issues/detail?id=119281 http://googlechromereleases.blogspot.com/2012/04/stable-and-beta-channel-updates.html http://lists.apple.com/archives/security-announce/2012/Jul/msg00000.html http://lists.apple.com/archives/security-announce/2012/Sep/msg00001.html http://lists.apple.com/archives/security-announce/2012/Sep/msg00003.html http://secunia.com/advisories/48732 http://secunia.com/advisories/48749 http://security.gentoo.org/glsa/glsa-201204-03.xml http:& • CWE-416: Use After Free •
CVSS: 6.8EPSS: 0%CPEs: 4EXPL: 1CVE-2011-3076
https://notcve.org/view.php?id=CVE-2011-3076
Use-after-free vulnerability in Google Chrome before 18.0.1025.151 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to focus handling. Una vulnerabilidad de uso después de liberación en Google Chrome antes de v18.0.1025.151 permite a atacantes remotos causar una denegación de servicio o posiblemente tener un impacto no especificado a través de vectores relacionados con la gestión del foco. • http://code.google.com/p/chromium/issues/detail?id=120037 http://googlechromereleases.blogspot.com/2012/04/stable-and-beta-channel-updates.html http://lists.apple.com/archives/security-announce/2012/Jul/msg00000.html http://lists.apple.com/archives/security-announce/2012/Sep/msg00001.html http://lists.apple.com/archives/security-announce/2012/Sep/msg00003.html http://secunia.com/advisories/48732 http://secunia.com/advisories/48749 http://security.gentoo.org/glsa/glsa-201204-03.xml http:& • CWE-416: Use After Free •
CVSS: 6.8EPSS: 1%CPEs: 4EXPL: 0CVE-2011-3059
https://notcve.org/view.php?id=CVE-2011-3059
Google Chrome before 18.0.1025.142 does not properly handle SVG text elements, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors. Las versiones anteriores a Google Chrome v18.0.1025.142 no trata correctamente los elementos SVG de texto, lo que permite a atacantes remotos provocar una denegación de servicio debido un desbordamiento de los límites de lectura (out-of-bounds read) a través de vectores no especificados. • http://code.google.com/p/chromium/issues/detail?id=112317 http://googlechromereleases.blogspot.com/2012/03/stable-channel-release-and-beta-channel.html http://lists.apple.com/archives/security-announce/2012/Jul/msg00000.html http://lists.apple.com/archives/security-announce/2012/Sep/msg00001.html http://lists.apple.com/archives/security-announce/2012/Sep/msg00003.html http://secunia.com/advisories/48618 http://secunia.com/advisories/48691 http://secunia.com/advisories/48763 http://support& • CWE-125: Out-of-bounds Read •